Total
26 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2017-6298 | 2 Debian, Ytnef Project | 2 Debian Linux, Ytnef | 2024-11-21 | 6.8 MEDIUM | 7.8 HIGH |
An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "1 of 9. Null Pointer Deref / calloc return value not checked." | |||||
CVE-2017-12144 | 1 Ytnef Project | 1 Ytnef | 2024-11-21 | 4.3 MEDIUM | 5.5 MEDIUM |
In ytnef 1.9.2, an allocation failure was found in the function TNEFFillMapi in ytnef.c, which allows attackers to cause a denial of service via a crafted file. | |||||
CVE-2017-12142 | 1 Ytnef Project | 1 Ytnef | 2024-11-21 | 4.3 MEDIUM | 5.5 MEDIUM |
In ytnef 1.9.2, an invalid memory read vulnerability was found in the function SwapDWord in ytnef.c, which allows attackers to cause a denial of service via a crafted file. | |||||
CVE-2017-12141 | 1 Ytnef Project | 1 Ytnef | 2024-11-21 | 4.3 MEDIUM | 5.5 MEDIUM |
In ytnef 1.9.2, a heap-based buffer overflow vulnerability was found in the function TNEFFillMapi in ytnef.c, which allows attackers to cause a denial of service via a crafted file. | |||||
CVE-2009-3887 | 1 Ytnef Project | 1 Ytnef | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
ytnef has directory traversal | |||||
CVE-2009-3721 | 2 Gnome, Ytnef Project | 2 Evolution, Ytnef | 2024-11-21 | 6.8 MEDIUM | 7.8 HIGH |
Multiple directory traversal and buffer overflow vulnerabilities were discovered in yTNEF, and in Evolution's TNEF parser that is derived from yTNEF. A crafted email could cause these applications to write data in arbitrary locations on the filesystem, crash, or potentially execute arbitrary code when decoding attachments. |