Yerase · Yerase'S Tnef Stream Reader · CVE-2010-5109
**Name of the Vulnerable Software and Affected Versions**
Yerase's TNEF Stream Reader (affected versions not specified)
**Description**
The issue is caused by an off-by-one error in the DecompressRTF function in ytnef.c, which allows remote attackers to cause a denial of service (crash) via a crafted TNEF file. This triggers a buffer overflow.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.