Name		Name	Last commit message	Last commit date
parent directory ..
81.rtf		81.rtf
README.md		README.md

README.md

CVE-2004-1297

Experiment Environment

CentOS 6.5

INSTALL & Configuration

wget https://github.com/mudongliang/source-packages/raw/master/CVE-2004-1297/unrtf-0.19.3.tar.gz
tar -xvf unrtf-0.19.3.tar.gz
cd unrtf-0.19.3
make

Problems in Installation & Configuration

How to trigger vulnerability

./unrtf 81.rtf

PoCs

unrtf 0.19.3 process_font_table overflows name buffer

GNU UnRTF 0.19.3 - Font Table Conversion Buffer Overflow

GNU UnRTF Font Table Conversion Buffer Overflow Vulnerability

Vulnerability Details & Patch

Root Cause

In convert.c, process_font_table() uses an unprotected strcat() to copy any number of bytes into a 255-byte name array.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

CVE-2004-1297

CVE-2004-1297

README.md

CVE-2004-1297

Experiment Environment

INSTALL & Configuration

Problems in Installation & Configuration

How to trigger vulnerability

PoCs

Vulnerability Details & Patch

Root Cause

Stack Trace

References

Files

CVE-2004-1297

Directory actions

More options

Directory actions

More options

Latest commit

History

CVE-2004-1297

Folders and files

parent directory

README.md

CVE-2004-1297

Experiment Environment

INSTALL & Configuration

Problems in Installation & Configuration

How to trigger vulnerability

PoCs

Vulnerability Details & Patch

Root Cause

Stack Trace

References