An issue was discovered in tnef before 1.4.13. Two OOB Writes have been identified in src/mapi_attr.c:mapi_attr_read(). These might lead to invalid read and write operations, controlled by an attacker. Date published : 2017-02-23 http://www.securityfocus.com/bid/96427...
An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "9 of 9. Directory Traversal using the filename; SanitizeFilename function in settings.c." Date published : 2017-02-23 http://www.securityfocus.com/bid/96423 http://www.debian.org/security/2017/dsa-3846
An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "8 of 9. Out of Bounds read and write." Date published : 2017-02-23 http://www.securityfocus.com/bid/96423 http://www.debian.org/security/2017/dsa-3846
An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "7 of 9. Out of Bounds read." Date published : 2017-02-23 http://www.securityfocus.com/bid/96423 http://www.debian.org/security/2017/dsa-3846
An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "6 of 9. Invalid Write and Integer Overflow." Date published : 2017-02-23 http://www.securityfocus.com/bid/96423 http://www.debian.org/security/2017/dsa-3846
An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "5 of 9. Integer Overflow." Date published : 2017-02-23 http://www.securityfocus.com/bid/96423 http://www.debian.org/security/2017/dsa-3846
An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "4 of 9. Out of Bounds Reads." Date published : 2017-02-23 http://www.securityfocus.com/bid/96423 http://www.debian.org/security/2017/dsa-3846
An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "3 of 9. Buffer Overflow in version field in lib/tnef-types.h." Date published : 2017-02-23 http://www.securityfocus.com/bid/96423 http://www.debian.org/security/2017/dsa-3846
An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "2 of 9. Infinite Loop / DoS in the TNEFFillMapi function in lib/ytnef.c." Date published : 2017-02-23 http://www.securityfocus.com/bid/96423...
An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "1 of 9. Null Pointer Deref / calloc return value not checked." Date published : 2017-02-23 http://www.securityfocus.com/bid/96423 http://www.debian.org/security/2017/dsa-3846
The tcp_splice_read function in net/ipv4/tcp.c in the Linux kernel before 4.9.11 allows remote attackers to cause a denial of service (infinite loop and soft lockup) via vectors involving a TCP packet with the URG...
D-Link DGS-1510-28XMP, DGS-1510-28X, DGS-1510-52X, DGS-1510-52, DGS-1510-28P, DGS-1510-28, and DGS-1510-20 Websmart devices with firmware before 1.31.B003 allow attackers to conduct Unauthenticated Information Disclosure attacks via unspecified vectors. Date published : 2017-02-23 http://www.securityfocus.com/bid/96393 http://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10070
D-Link DGS-1510-28XMP, DGS-1510-28X, DGS-1510-52X, DGS-1510-52, DGS-1510-28P, DGS-1510-28, and DGS-1510-20 Websmart devices with firmware before 1.31.B003 allow attackers to conduct Unauthenticated Command Bypass attacks via unspecified vectors. Date published : 2017-02-23 http://www.securityfocus.com/bid/96397 http://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10070
The r_read_* functions in libr/include/r_endian.h in radare2 1.2.1 allow remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted binary file, as demonstrated by the r_read_le32 function....