Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ytnef project ytnef vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2009-3887
ytnef has directory traversal
Ytnef Project Ytnef
9.8
CVSSv3
CVE-2017-9058
In libytnef in ytnef up to and including 1.9.2, there is a heap-based buffer over-read due to incorrect boundary checking in the SIZECHECK macro in lib/ytnef.c.
Ytnef Project Ytnef
Canonical Ubuntu Linux 14.04
8.8
CVSSv3
CVE-2017-9146
The TNEFFillMapi function in lib/ytnef.c in libytnef in ytnef up to and including 1.9.2 does not ensure a nonzero count value before a certain memory allocation, which allows remote malicious users to cause a denial of service (heap-based buffer overflow and application crash) or...
Ytnef Project Ytnef
7.8
CVSSv3
CVE-2009-3721
Multiple directory traversal and buffer overflow vulnerabilities were discovered in yTNEF, and in Evolution's TNEF parser that is derived from yTNEF. A crafted email could cause these applications to write data in arbitrary locations on the filesystem, crash, or potentially ...
Gnome Evolution
Ytnef Project Ytnef
7.8
CVSSv3
CVE-2021-3403
In ytnef 1.9.3, the TNEFSubjectHandler function in lib/ytnef.c allows remote malicious users to cause a denial-of-service (and potentially code execution) due to a double free which can be triggered via a crafted file.
Ytnef Project Ytnef 1.9.3
Redhat Enterprise Linux 7.0
Fedoraproject Fedora 33
7.8
CVSSv3
CVE-2021-3404
In ytnef 1.9.3, the SwapWord function in lib/ytnef.c allows remote malicious users to cause a denial-of-service (and potentially code execution) due to a heap buffer overflow which can be triggered via a crafted file.
Ytnef Project Ytnef 1.9.3
Redhat Enterprise Linux 7.0
Fedoraproject Fedora 33
7.8
CVSSv3
CVE-2017-6300
An issue exists in ytnef prior to 1.9.1. This is related to a patch described as "3 of 9. Buffer Overflow in version field in lib/tnef-types.h."
Ytnef Project Ytnef
Debian Debian Linux 8.0
Debian Debian Linux 9.0
7.8
CVSSv3
CVE-2017-6303
An issue exists in ytnef prior to 1.9.1. This is related to a patch described as "6 of 9. Invalid Write and Integer Overflow."
Ytnef Project Ytnef
Debian Debian Linux 8.0
Debian Debian Linux 9.0
7.8
CVSSv3
CVE-2017-6298
An issue exists in ytnef prior to 1.9.1. This is related to a patch described as "1 of 9. Null Pointer Deref / calloc return value not checked."
Ytnef Project Ytnef
Debian Debian Linux 8.0
Debian Debian Linux 9.0
7.8
CVSSv3
CVE-2017-6301
An issue exists in ytnef prior to 1.9.1. This is related to a patch described as "4 of 9. Out of Bounds Reads."
Ytnef Project Ytnef
Debian Debian Linux 8.0
Debian Debian Linux 9.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »