|
250371
|
7.8 |
HIGH
Local
|
tnef_project
debian
|
tnef
debian_linux
|
An issue was discovered in tnef before 1.4.13. Several Integer Overflows, which can lead to Heap Overflows, have been identified in the functions that wrap memory allocation.
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-6308
|
2024-11-21 12:29 |
2017-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250372
|
7.8 |
HIGH
Local
|
tnef_project
debian
|
tnef
debian_linux
|
An issue was discovered in tnef before 1.4.13. Two OOB Writes have been identified in src/mapi_attr.c:mapi_attr_read(). These might lead to invalid read and write operations, controlled by an attacke…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-6307
|
2024-11-21 12:29 |
2017-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250373
|
7.8 |
HIGH
Local
|
ytnef_project
debian
|
ytnef
debian_linux
|
An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "9 of 9. Directory Traversal using the filename; SanitizeFilename function in settings.c."
|
CWE-22
Path Traversal
|
CVE-2017-6306
|
2024-11-21 12:29 |
2017-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250374
|
7.8 |
HIGH
Local
|
ytnef_project
debian
|
ytnef
debian_linux
|
An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "8 of 9. Out of Bounds read and write."
|
CWE-125
CWE-787
Out-of-bounds Read
Out-of-bounds Write
|
CVE-2017-6305
|
2024-11-21 12:29 |
2017-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250375
|
7.8 |
HIGH
Local
|
ytnef_project
debian
|
ytnef
debian_linux
|
An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "7 of 9. Out of Bounds read."
|
CWE-125
Out-of-bounds Read
|
CVE-2017-6304
|
2024-11-21 12:29 |
2017-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250376
|
7.8 |
HIGH
Local
|
ytnef_project
debian
|
ytnef
debian_linux
|
An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "6 of 9. Invalid Write and Integer Overflow."
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-6303
|
2024-11-21 12:29 |
2017-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250377
|
7.8 |
HIGH
Local
|
ytnef_project
debian
|
ytnef
debian_linux
|
An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "5 of 9. Integer Overflow."
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-6302
|
2024-11-21 12:29 |
2017-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250378
|
7.8 |
HIGH
Local
|
ytnef_project
debian
|
ytnef
debian_linux
|
An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "4 of 9. Out of Bounds Reads."
|
CWE-125
Out-of-bounds Read
|
CVE-2017-6301
|
2024-11-21 12:29 |
2017-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250379
|
7.8 |
HIGH
Local
|
ytnef_project
debian
|
ytnef
debian_linux
|
An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "3 of 9. Buffer Overflow in version field in lib/tnef-types.h."
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-6300
|
2024-11-21 12:29 |
2017-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250380
|
5.5 |
MEDIUM
Local
|
ytnef_project
debian
|
ytnef
debian_linux
|
An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "2 of 9. Infinite Loop / DoS in the TNEFFillMapi function in lib/ytnef.c."
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2017-6299
|
2024-11-21 12:29 |
2017-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
