CVE-2021-3404 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Project Ytnef

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787 — Out-of-bounds Write4 documents4 sources

Severity

7.8HIGHNVD

EPSS

2.1%

top 16.05%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Debian Libytnef Ytnef Project Ytnef Fedoraproject Fedora +1 more

Timeline

PublishedMar 4

Latest updateMay 24

Description

In ytnef 1.9.3, the SwapWord function in lib/ytnef.c allows remote attackers to cause a denial-of-service (and potentially code execution) due to a heap buffer overflow which can be triggered via a crafted file.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages3 packages

▶debiandebian/libytnef< libytnef 1.9.3-3 (bookworm)

▶CVEListV5ytnef_project/ytnefAll versions

▶NVDytnef_project/ytnef1.9.3

Also affects: Fedora 33, Enterprise Linux 7.0

🔴Vulnerability Details

GHSA

GHSA-5f69-j422-38p4: In ytnef 1↗2022-05-24

▶

OSV

CVE-2021-3404: In ytnef 1↗2021-03-04

▶

📋Vendor Advisories

Debian

CVE-2021-3404: libytnef - In ytnef 1.9.3, the SwapWord function in lib/ytnef.c allows remote attackers to ...↗2021

▶