CVE-2021-3403

HIGH

ytnef 1.9.3 - Double Free in TNEFSubjectHandler

Title source: llm
STIX 2.1

Description

In ytnef 1.9.3, the TNEFSubjectHandler function in lib/ytnef.c allows remote attackers to cause a denial-of-service (and potentially code execution) due to a double free which can be triggered via a crafted file.

References (2)

Core 2
Core References
Issue Tracking, Third Party Advisory x_refsource_misc
https://bugzilla.redhat.com/show_bug.cgi?id=1926967
Exploit, Issue Tracking, Third Party Advisory x_refsource_misc
https://github.com/Yeraze/ytnef/issues/85

Scores

CVSS v3 7.8
EPSS 0.0089
EPSS Percentile 75.7%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-415 CWE-416
Status published
Products (3)
fedoraproject/fedora 33
redhat/enterprise_linux 7.0
ytnef_project/ytnef 1.9.3
Published Mar 04, 2021
Tracked Since Feb 18, 2026