CVE-2010-5109

EPSS 1.2%

Published: 5/5/2014Modified: 4/28/2026

Description

Off-by-one error in the DecompressRTF function in ytnef.c in Yerase's TNEF Stream Reader allows remote attackers to cause a denial of service (crash) via a crafted TNEF file, which triggers a buffer overflow.

Affected packages (2)

Debian/claws-mailfrom 0, < 3.11.1-2
Debian/libytneffrom 0, < 1.5-5

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2010-5109