CVE-2004-2167

Sažetak

Multiple buffer overflows in LaTeX2rtf 1.9.15, and possibly other versions, allow remote attackers to execute arbitrary code via (1) the expandmacro function, and possibly (2) Environments and (3) TranslateCommand.

Reference

http://cvs.sourceforge.net/viewcvs.py/latex2rtf/latex2rtf/definitions.c?rev=1.22&view=log
http://www.osvdb.org/displayvuln.php?osvdb_id=10216
http://www.securityfocus.com/bid/11233
http://www.securitytracker.com/alerts/2004/Sep/1011367.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/17460
https://exchange.xforce.ibmcloud.com/vulnerabilities/17487

CVSS

Base:	7.5
Impact:	6.4
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

11-07-2017 - 01:31

Objavljeno

31-12-2004 - 05:00