[Secure-testing-team] Re: [Secure-testing-commits] r2660 -
data/DTSA/advs
Florian Weimer
fw at deneb.enyo.de
Fri Nov 4 09:58:06 UTC 2005
* Micah Anderson:
> +CVE-2005-3239
> +
> + The OLE2 unpacker allows remote attackers to cause a denial of service
> + by sending a DOC file with an invalid property tree, triggering
> + an infinite recursion.
> +
> + A possible denial of service has been found in
> + libclamav/tnef.c (IDEF1169)
Could you fromat this in a way which makes clear that the CVE name
only applies to the first bug?
More information about the Secure-testing-team
mailing list