Stack-based buffer overflow vulnerabilities in unrtf 0.21.9: Denial-of-Service via Negative Integer Write

Stack-based buffer overflow vulnerabilities in unrtf 0.21.9: Denial-of-Service via Negative Integer Write

CVE-2016-10091 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

Multiple stack-based buffer overflows in unrtf 0.21.9 allow remote attackers to cause a denial-of-service by writing a negative integer to the (1) cmd_expand function, (2) cmd_emboss function, or (3) cmd_engrave function.

Learn more about our Web Application Penetration Testing UK.