2019-11-11 03:21:55
mitre
PUBLISHED
In tnef before 1.4.18, an attacker may be able to write to the victims .ssh/authorized_keys file via an e-mail message with a crafted winmail.dat application/ms-tnef attachment, because of a heap-based buffer over-read involving strdup.