Mark Simpson

4 exploits Active since Feb 2017
CVE-2017-6308 WRITEUP HIGH WRITEUP
tnef < 1.4.13 - Integer Overflow and Heap Overflow via Memory Allocation Wrapper
An issue was discovered in tnef before 1.4.13. Several Integer Overflows, which can lead to Heap Overflows, have been identified in the functions that wrap memory allocation.
CVSS 7.8
CVE-2017-6309 WRITEUP HIGH WRITEUP
tnef < 1.4.13 - Out-of-bounds Read via Type Confusion in parse_file()
An issue was discovered in tnef before 1.4.13. Two type confusions have been identified in the parse_file() function. These might lead to invalid read and write operations, controlled by an attacker.
CVSS 7.8
CVE-2017-6310 WRITEUP HIGH WRITEUP
tnef < 1.4.13 - Out-of-bounds Read via MAPI Attribute Type Confusion
An issue was discovered in tnef before 1.4.13. Four type confusions have been identified in the file_add_mapi_attrs() function. These might lead to invalid read and write operations, controlled by an attacker.
CVSS 7.8
CVE-2017-6307 WRITEUP HIGH WRITEUP
tnef < 1.4.13 - Out-of-bounds Write in MAPI Attribute Reader
An issue was discovered in tnef before 1.4.13. Two OOB Writes have been identified in src/mapi_attr.c:mapi_attr_read(). These might lead to invalid read and write operations, controlled by an attacker.
CVSS 7.8