freetype -- LWFN Files Buffer Overflow Vulnerability

2006-07-10T00:00:00
ID B975763F-5210-11DB-8F1A-000A48049292
Type freebsd
Reporter FreeBSD
Modified 2006-07-10T00:00:00

Description

SecurityTracker reports:

A vulnerability was reported in FreeType. A remote user can cause arbitrary code to be executed on the target user's system. A remote user can create a specially crafted font file that, when loaded by the target user's system, will trigger an integer underflow or integer overflow and crash the application or execute arbitrary code on the target system. Chris Evans reported these vulnerabilities. Impact: A remote user can create a file that, when loaded by the target user, will execute arbitrary code on the target user's system.