Vulnerabilities > CVE-2022-23850 - Out-of-bounds Write vulnerability in Epub2Txt Project Epub2Txt

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

NVD

Published: 2022-01-23

Updated: 2023-01-20

Summary

xhtml_translate_entity in xhtml.c in epub2txt (aka epub2txt2) through 2.02 allows a stack-based buffer overflow via a crafted EPUB document.

Part	Description	Count
Application	Epub2Txt_Project Epub2Txt Project Epub2Txt 0.0.1 Epub2Txt Project Epub2Txt 0.1.1 Epub2Txt Project Epub2Txt 0.1.2 Epub2Txt Project Epub2Txt 0.1.3 Epub2Txt Project Epub2Txt 0.1.4 Epub2Txt Project Epub2Txt 0.1.5 Epub2Txt Project Epub2Txt 2.0 Epub2Txt Project Epub2Txt 2.01 Epub2Txt Project Epub2Txt 2.02	9