yTNEF, an open source filter program that decodes Transport Neutral Encapsulation Format (TNEF) e-mail attachments, and the Evolution TNEF attachment decoder plugin suffer from directory traversal and buffer overflow vulnerabilities.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/81105/oCERT-2009-013.txt
Source: https://packetstormsecurity.com/files/81105/Open-Source-CERT-Security-Advisory-2009.13.html