[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

DSA-3846-1 libytnef -- libytnef

ID: oval:org.secpod.oval:def:602874Date: (C)2017-05-12   (M)2023-12-20
Class: PATCHFamily: unix




Several issues were discovered in libytnef, a library used to decode application/ms-tnef e-mail attachments. Multiple heap overflows, out-of-bound writes and reads, NULL pointer dereferences and infinite loops could be exploited by tricking a user into opening a maliciously crafted winmail.dat file.

Platform:
Debian 8.x
Product:
libytnef0
Reference:
DSA-3846-1
CVE-2017-6298
CVE-2017-6299
CVE-2017-6300
CVE-2017-6301
CVE-2017-6302
CVE-2017-6303
CVE-2017-6304
CVE-2017-6305
CVE-2017-6306
CVE-2017-6800
CVE-2017-6801
CVE-2017-6802
CVE    12
CVE-2017-6802
CVE-2017-6305
CVE-2017-6800
CVE-2017-6306
...
CPE    2
cpe:/o:debian:debian_linux:8.x
cpe:/a:sourceforge:libytnef0

© SecPod Technologies