Lucene search

K
cvelistAppleCVELIST:CVE-2010-3814
HistoryNov 26, 2010 - 7:00 p.m.

CVE-2010-3814

2010-11-2619:00:00
apple
www.cve.org
6

AI Score

6.3

Confidence

High

EPSS

0.16

Percentile

96.0%

Heap-based buffer overflow in the Ins_SHZ function in ttinterp.c in FreeType 2.4.3 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted SHZ bytecode instruction, related to TrueType opcodes, as demonstrated by a PDF document with a crafted embedded font.

AI Score

6.3

Confidence

High

EPSS

0.16

Percentile

96.0%