CVE-2021-3404

HIGH

ytnef 1.9.3 - Heap Buffer Overflow via Crafted File

Title source: llm
STIX 2.1

Description

In ytnef 1.9.3, the SwapWord function in lib/ytnef.c allows remote attackers to cause a denial-of-service (and potentially code execution) due to a heap buffer overflow which can be triggered via a crafted file.

References (2)

Core 2
Core References
Issue Tracking, Third Party Advisory x_refsource_misc
https://bugzilla.redhat.com/show_bug.cgi?id=1926965
Exploit, Issue Tracking, Third Party Advisory x_refsource_misc
https://github.com/Yeraze/ytnef/issues/86

Scores

CVSS v3 7.8
EPSS 0.0207
EPSS Percentile 84.1%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-119 CWE-787
Status published
Products (3)
fedoraproject/fedora 33
redhat/enterprise_linux 7.0
ytnef_project/ytnef 1.9.3
Published Mar 04, 2021
Tracked Since Feb 18, 2026