CVE-2015-8106

Name of the Vulnerable Software and Affected Versions latex2rtf versions prior to 2.3.10

Description The issue is related to a format string vulnerability in the CmdKeywords function. This vulnerability allows remote attackers to execute arbitrary code via format string specifiers in the keywords command in a crafted TeX file.

Recommendations For versions prior to 2.3.10, update to version 2.3.10 or later to resolve the issue. As a temporary workaround, consider restricting the use of the keywords command in TeX files until the update is applied.