Lucene search
K

7 matches found

Cvelist
Cvelist
added 2012/11/19 11:0 a.m.39 views

CVE-2011-5244

Multiple off-by-one errors in the 1 token and 2 linetoken functions in backend/dvi/mdvi-lib/afmparse.c in t1lib, as used in teTeX 3.0.x, GNOME evince, and possibly other products, allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via a DVI file containi...

8.1AI score0.03355EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2012/11/19 11:0 a.m.28 views

CVE-2011-0433

Heap-based buffer overflow in the linetoken function in afmparse.c in t1lib, as used in teTeX 3.0.x, GNOME evince, and possibly other products, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a DVI file containing a crafted Adobe Font Metrics AFM...

6.8CVSS8.2AI score0.0421EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2012/01/13 12:0 a.m.28 views

CVE-2011-0433

Heap-based buffer overflow in the linetoken function in afmparse.c in t1lib, as used in teTeX 3.0.x, GNOME evince, and possibly other products, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a DVI file containing a crafted Adobe Font Metrics AFM...

6.8CVSS6.3AI score0.0421EPSS
Exploits0References3
NVD
NVD
added 2010/04/16 6:30 p.m.12 views

CVE-2010-0739

Integer overflow in the predospecial function in dospecial.c in dvips in 1 TeX Live and 2 teTeX might allow user-assisted remote attackers to execute arbitrary code via a crafted DVI file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party...

6.8CVSS7.6AI score0.04918EPSS
Exploits1References10
CVE
CVE
added 2010/04/16 6:0 p.m.75 views

CVE-2010-0739

CVE-2010-0739 affects TeX Live and teTeX dvips parsing of DVI files. Root cause: integer/heap-based overflow in predospecial() of dospecial.c, triggered by a crafted DVI file, enabling user-assisted remote code execution. Connected advisories indicate TeX Live/teTeX components are vulnerable; pat...

6.8CVSS7.7AI score0.04918EPSS
Exploits1References10Affected Software2
UbuntuCve
UbuntuCve
added 2010/04/16 12:0 a.m.26 views

CVE-2010-0739

Integer overflow in the predospecial function in dospecial.c in dvips in 1 TeX Live and 2 teTeX might allow user-assisted remote attackers to execute arbitrary code via a crafted DVI file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party...

6.8CVSS6.2AI score0.04918EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2010/04/16 12:0 a.m.3 views

PT-2010-2483 · Thomas Esser +2 · Tetex +2

Name of the Vulnerable Software and Affected Versions: TeX Live affected versions not specified teTeX affected versions not specified Description: The issue is related to an integer overflow in the predospecial function, which might allow attackers to execute arbitrary code via a crafted DVI file...

9.3CVSS6.5AI score0.10228EPSS
Exploits8References70
Rows per page
Query Builder