|
|
Subscribe / Log in / New account

unrtf: code execution

Package(s):unrtf CVE #(s):CVE-2014-9274 CVE-2014-9275
Created:December 23, 2014 Updated:July 7, 2015
Description: From the CVE entries:

UnRTF allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code as demonstrated by a file containing the string "{\cb-999999999". (CVE-2014-9274)

UnRTF allows remote attackers to cause a denial of service (out-of-bounds memory access and crash) and possibly execute arbitrary code via a crafted RTF file. (CVE-2014-9275)

Alerts:
Gentoo 201507-06 unrtf 2015-07-07
Debian DSA-3158-1 unrtf 2015-02-09
Debian-LTS DLA-133-1 unrtf 2015-01-14
Mandriva MDVSA-2015:007 unrtf 2015-01-08
Fedora FEDORA-2014-17281 unrtf 2015-01-03
Mageia MGASA-2014-0533 unrtf 2014-12-19
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds