2 matches found
HP Sprinter Tidestone Formula One DefaultFontName Buffer Overflow (CVE-2014-2638)
A code execution vulnerability exists in HP Sprinter. The vulnerability is due to a buffer overflow while handling the DefaultFontName property within the Tidestone Formula One ActiveX control. A remote attacker could exploit this vulnerability by enticing an unsuspecting victim to follow a...
CVE-2014-2638
HP Sprinter 12.01 is affected by a remote code execution vulnerability in the Tidestone Formula One ActiveX controls (TTF16.ocx). The root cause is a memory corruption flaw caused by assigning an overly long value to the DefaultFontName property, allowing an attacker to execute arbitrary code in ...