CVE-2017-6309
CVE-2017-6309
An issue was discovered in tnef before 1.4.13. Two type confusions have been identified in the parse_file() function. These might lead to invalid read and write operations, controlled by an attacker.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://github.com/verdammelt/tnef/blob/master/ChangeLoghttps://github.com/verdammelt/tnef/commit/8dccf79857ceeb7a6d3e42c1e762e7b865d5344dhttps://security.gentoo.org/glsa/201708-02https://www.x41-dsec.de/lab/advisories/x41-2017-004-tnef/http://www.debian.org/security/2017/dsa-3798http://www.securityfocus.com/bid/96427