Vulnerabilities > Ytnef Project > Ytnef > 1.9.2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-08-02 | CVE-2017-12144 | Allocation of Resources Without Limits or Throttling vulnerability in Ytnef Project Ytnef 1.9.2 In ytnef 1.9.2, an allocation failure was found in the function TNEFFillMapi in ytnef.c, which allows attackers to cause a denial of service via a crafted file. | 5.5 |
| 2017-08-02 | CVE-2017-12142 | Out-of-bounds Read vulnerability in Ytnef Project Ytnef 1.9.2 In ytnef 1.9.2, an invalid memory read vulnerability was found in the function SwapDWord in ytnef.c, which allows attackers to cause a denial of service via a crafted file. | 5.5 |
| 2017-08-02 | CVE-2017-12141 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Ytnef Project Ytnef 1.9.2 In ytnef 1.9.2, a heap-based buffer overflow vulnerability was found in the function TNEFFillMapi in ytnef.c, which allows attackers to cause a denial of service via a crafted file. | 5.5 |
| 2017-06-07 | CVE-2017-9474 | Out-of-bounds Read vulnerability in Ytnef Project Ytnef 1.9.2 In ytnef 1.9.2, the DecompressRTF function in lib/ytnef.c allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file. | 5.5 |
| 2017-06-07 | CVE-2017-9473 | In ytnef 1.9.2, the TNEFFillMapi function in lib/ytnef.c allows remote attackers to cause a denial of service (memory consumption) via a crafted file. | 5.5 |
| 2017-06-07 | CVE-2017-9472 | Out-of-bounds Read vulnerability in Ytnef Project Ytnef 1.9.2 In ytnef 1.9.2, the SwapDWord function in lib/ytnef.c allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file. | 5.5 |
| 2017-06-07 | CVE-2017-9471 | Out-of-bounds Read vulnerability in multiple products In ytnef 1.9.2, the SwapWord function in lib/ytnef.c allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file. | 5.5 |
| 2017-06-07 | CVE-2017-9470 | NULL Pointer Dereference vulnerability in Ytnef Project Ytnef 1.9.2 In ytnef 1.9.2, the MAPIPrint function in lib/ytnef.c allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file. | 5.5 |
| 2017-05-22 | CVE-2017-9146 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Ytnef Project Ytnef The TNEFFillMapi function in lib/ytnef.c in libytnef in ytnef through 1.9.2 does not ensure a nonzero count value before a certain memory allocation, which allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted tnef file. | 8.8 |
| 2017-05-18 | CVE-2017-9058 | Out-of-bounds Read vulnerability in multiple products In libytnef in ytnef through 1.9.2, there is a heap-based buffer over-read due to incorrect boundary checking in the SIZECHECK macro in lib/ytnef.c. | 9.8 |