Ytnef Project Ytnef vulnerabilities

CVE-2021-3403 [HIGH] CWE-416 CVE-2021-3403: In ytnef 1.9.3, the TNEFSubjectHandler function in lib/ytnef.c allows remote attackers to cause a de In ytnef 1.9.3, the TNEFSubjectHandler function in lib/ytnef.c allows remote attackers to cause a denial-of-service (and potentially code execution) due to a double free which can be triggered via a crafted file.

CVE-2021-3404 [HIGH] CWE-119 CVE-2021-3404: In ytnef 1.9.3, the SwapWord function in lib/ytnef.c allows remote attackers to cause a denial-of-se In ytnef 1.9.3, the SwapWord function in lib/ytnef.c allows remote attackers to cause a denial-of-service (and potentially code execution) due to a heap buffer overflow which can be triggered via a crafted file.

CVE-2017-12142 [MEDIUM] CWE-125 CVE-2017-12142: In ytnef 1.9.2, an invalid memory read vulnerability was found in the function SwapDWord in ytnef.c, In ytnef 1.9.2, an invalid memory read vulnerability was found in the function SwapDWord in ytnef.c, which allows attackers to cause a denial of service via a crafted file.

CVE-2017-12144 [MEDIUM] CWE-770 CVE-2017-12144: In ytnef 1.9.2, an allocation failure was found in the function TNEFFillMapi in ytnef.c, which allow In ytnef 1.9.2, an allocation failure was found in the function TNEFFillMapi in ytnef.c, which allows attackers to cause a denial of service via a crafted file.

CVE-2017-12141 [MEDIUM] CWE-119 CVE-2017-12141: In ytnef 1.9.2, a heap-based buffer overflow vulnerability was found in the function TNEFFillMapi in In ytnef 1.9.2, a heap-based buffer overflow vulnerability was found in the function TNEFFillMapi in ytnef.c, which allows attackers to cause a denial of service via a crafted file.

CVE-2017-9474 [MEDIUM] CWE-125 CVE-2017-9474: In ytnef 1.9.2, the DecompressRTF function in lib/ytnef.c allows remote attackers to cause a denial In ytnef 1.9.2, the DecompressRTF function in lib/ytnef.c allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file.

CVE-2017-9470 [MEDIUM] CWE-476 CVE-2017-9470: In ytnef 1.9.2, the MAPIPrint function in lib/ytnef.c allows remote attackers to cause a denial of s In ytnef 1.9.2, the MAPIPrint function in lib/ytnef.c allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file.

CVE-2017-9473 [MEDIUM] CVE-2017-9473: In ytnef 1.9.2, the TNEFFillMapi function in lib/ytnef.c allows remote attackers to cause a denial o In ytnef 1.9.2, the TNEFFillMapi function in lib/ytnef.c allows remote attackers to cause a denial of service (memory consumption) via a crafted file.

CVE-2017-9472 [MEDIUM] CWE-125 CVE-2017-9472: In ytnef 1.9.2, the SwapDWord function in lib/ytnef.c allows remote attackers to cause a denial of s In ytnef 1.9.2, the SwapDWord function in lib/ytnef.c allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file.

CVE-2017-9471 [MEDIUM] CWE-125 CVE-2017-9471: In ytnef 1.9.2, the SwapWord function in lib/ytnef.c allows remote attackers to cause a denial of se In ytnef 1.9.2, the SwapWord function in lib/ytnef.c allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file.

CVE-2017-9146 [HIGH] CWE-119 CVE-2017-9146: The TNEFFillMapi function in lib/ytnef.c in libytnef in ytnef through 1.9.2 does not ensure a nonzer The TNEFFillMapi function in lib/ytnef.c in libytnef in ytnef through 1.9.2 does not ensure a nonzero count value before a certain memory allocation, which allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted tnef file.

CVE-2017-9058 [CRITICAL] CWE-125 CVE-2017-9058: In libytnef in ytnef through 1.9.2, there is a heap-based buffer over-read due to incorrect boundary In libytnef in ytnef through 1.9.2, there is a heap-based buffer over-read due to incorrect boundary checking in the SIZECHECK macro in lib/ytnef.c.

CVE-2017-6802 [HIGH] CWE-125 CVE-2017-6802: An issue was discovered in ytnef before 1.9.2. There is a potential heap-based buffer over-read on i An issue was discovered in ytnef before 1.9.2. There is a potential heap-based buffer over-read on incoming Compressed RTF Streams, related to DecompressRTF() in libytnef.

CVE-2017-6801 [HIGH] CWE-125 CVE-2017-6801: An issue was discovered in ytnef before 1.9.2. There is a potential out-of-bounds access with fields An issue was discovered in ytnef before 1.9.2. There is a potential out-of-bounds access with fields of Size 0 in TNEFParse() in libytnef.

CVE-2017-6800 [HIGH] CWE-125 CVE-2017-6800: An issue was discovered in ytnef before 1.9.2. An invalid memory access (heap-based buffer over-read An issue was discovered in ytnef before 1.9.2. An invalid memory access (heap-based buffer over-read) can occur during handling of LONG data types, related to MAPIPrint() in libytnef.

CVE-2017-6300 [HIGH] CWE-119 CVE-2017-6300: An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "3 of 9. Buff An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "3 of 9. Buffer Overflow in version field in lib/tnef-types.h."

CVE-2017-6306 [HIGH] CWE-22 CVE-2017-6306: An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "9 of 9. Dire An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "9 of 9. Directory Traversal using the filename; SanitizeFilename function in settings.c."

CVE-2017-6305 [HIGH] CWE-125 CVE-2017-6305: An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "8 of 9. Out An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "8 of 9. Out of Bounds read and write."

CVE-2017-6298 [HIGH] CWE-476 CVE-2017-6298: An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "1 of 9. Null An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "1 of 9. Null Pointer Deref / calloc return value not checked."

CVE-2017-6302 [HIGH] CWE-190 CVE-2017-6302: An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "5 of 9. Inte An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "5 of 9. Integer Overflow."