Vulnerability   
Search   
    Search 191973 CVE descriptions
and 86218 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.844692
Category:Ubuntu Local Security Checks
Title:Ubuntu: Security Advisory for libytnef (USN-4615-1)
Summary:The remote host is missing an update for the 'libytnef'; package(s) announced via the USN-4615-1 advisory.
Description:Summary:
The remote host is missing an update for the 'libytnef'
package(s) announced via the USN-4615-1 advisory.

Vulnerability Insight:
It was discovered that Yerase's TNEF had null pointer dereferences, infinite
loop, buffer overflow, out of bounds reads, directory traversal issues and
other vulnerabilities. An attacker could use those issues to cause a crash
and consequently a denial of service. (CVE-2017-6298, CVE-2017-6299,
CVE-2017-6300, CVE-2017-6301, CVE-2017-6302, CVE-2017-6303, CVE-2017-6304,
CVE-2017-6305, CVE-2017-6306, CVE-2017-6800, CVE-2017-6801, CVE-2017-6802)

Affected Software/OS:
'libytnef' package(s) on Ubuntu 16.04 LTS.

Solution:
Please install the updated package(s).

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2017-6298
BugTraq ID: 96423
http://www.securityfocus.com/bid/96423
Debian Security Information: DSA-3846 (Google Search)
http://www.debian.org/security/2017/dsa-3846
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LFJWMUEUC4ILH2HEOCYVVLQT654ZMCGQ/
http://www.openwall.com/lists/oss-security/2017/02/15/4
https://github.com/Yeraze/ytnef/pull/27
https://www.x41-dsec.de/lab/advisories/x41-2017-002-ytnef/
Common Vulnerability Exposure (CVE) ID: CVE-2017-6299
Common Vulnerability Exposure (CVE) ID: CVE-2017-6300
Common Vulnerability Exposure (CVE) ID: CVE-2017-6301
Common Vulnerability Exposure (CVE) ID: CVE-2017-6302
Common Vulnerability Exposure (CVE) ID: CVE-2017-6303
Common Vulnerability Exposure (CVE) ID: CVE-2017-6304
Common Vulnerability Exposure (CVE) ID: CVE-2017-6305
Common Vulnerability Exposure (CVE) ID: CVE-2017-6306
Common Vulnerability Exposure (CVE) ID: CVE-2017-6800
Common Vulnerability Exposure (CVE) ID: CVE-2017-6801
Common Vulnerability Exposure (CVE) ID: CVE-2017-6802
CopyrightCopyright (C) 2020 Greenbone Networks GmbH

This is only one of 86218 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2020 E-Soft Inc. All rights reserved.