Arbitrary Code Execution via Format String Vulnerability in latex2rtf

Arbitrary Code Execution via Format String Vulnerability in latex2rtf

CVE-2015-8106 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Format string vulnerability in the CmdKeywords function in funct1.c in latex2rtf before 2.3.10 allows remote attackers to execute arbitrary code via format string specifiers in the \keywords command in a crafted TeX file.

Learn more about our Web Application Penetration Testing UK.