Lucene search
K

107 matches found

UbuntuCve
UbuntuCve
added 2010/04/20 12:0 a.m.23 views

CVE-2010-0827

Integer overflow in dvips in TeX Live 2009 and earlier, and teTeX, allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted virtual font VF file associated with a DVI file...

6.8CVSS6.2AI score0.04439EPSS
Exploits0References2
Prion
Prion
added 2010/04/16 6:30 p.m.16 views

Integer overflow

Integer overflow in the predospecial function in dospecial.c in dvips in 1 TeX Live and 2 teTeX might allow user-assisted remote attackers to execute arbitrary code via a crafted DVI file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party...

6.8CVSS8.1AI score0.04918EPSS
Exploits1References10
NVD
NVD
added 2010/04/16 6:30 p.m.13 views

CVE-2010-0739

Integer overflow in the predospecial function in dospecial.c in dvips in 1 TeX Live and 2 teTeX might allow user-assisted remote attackers to execute arbitrary code via a crafted DVI file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party...

6.8CVSS7.6AI score0.04918EPSS
Exploits1References10
OSV
OSV
added 2010/04/16 6:30 p.m.1 views

DEBIAN-CVE-2010-0739

Integer overflow in the predospecial function in dospecial.c in dvips in 1 TeX Live and 2 teTeX might allow user-assisted remote attackers to execute arbitrary code via a crafted DVI file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party...

6.8CVSS8AI score0.04918EPSS
Exploits1References1
OSV
OSV
added 2010/04/16 6:30 p.m.5 views

CVE-2010-0739

Integer overflow in the predospecial function in dospecial.c in dvips in 1 TeX Live and 2 teTeX might allow user-assisted remote attackers to execute arbitrary code via a crafted DVI file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party...

6.8CVSS7.5AI score0.04918EPSS
Exploits1References10
Cvelist
Cvelist
added 2010/04/16 6:0 p.m.21 views

CVE-2010-0739

Integer overflow in the predospecial function in dospecial.c in dvips in 1 TeX Live and 2 teTeX might allow user-assisted remote attackers to execute arbitrary code via a crafted DVI file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party...

7.5AI score0.04918EPSS
Exploits1References10
CVE
CVE
added 2010/04/16 6:0 p.m.75 views

CVE-2010-0739

CVE-2010-0739 affects TeX Live and teTeX dvips parsing of DVI files. Root cause: integer/heap-based overflow in predospecial() of dospecial.c, triggered by a crafted DVI file, enabling user-assisted remote code execution. Connected advisories indicate TeX Live/teTeX components are vulnerable; pat...

6.8CVSS7.7AI score0.04918EPSS
Exploits1References10Affected Software2
Debian CVE
Debian CVE
added 2010/04/16 6:0 p.m.19 views

CVE-2010-0739

Integer overflow in the predospecial function in dospecial.c in dvips in 1 TeX Live and 2 teTeX might allow user-assisted remote attackers to execute arbitrary code via a crafted DVI file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party...

6.8CVSS7.7AI score0.04918EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2009/11/13 12:0 a.m.25 views

Fedora 10 : texlive-2007-46.fc10 (2009-10730)

Fri Oct 23 2009 Jindrich Novy 2007-46 - add missing dependency on kpathsea - Thu Oct 15 2009 Jindrich Novy 2007-45 - make kpathsea not dependent on texlive - fix lacheck again 451513 - fix dvips configuration 467542 - update kpathsea description and summary 519257 - use upstream patch to fix pool...

5CVSS5.4AI score0.1192EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2009/11/13 12:0 a.m.26 views

Fedora 11 : texlive-2007-46.fc11 (2009-10857)

Fri Oct 23 2009 Jindrich Novy 2007-46 - add missing dependency on kpathsea - Thu Oct 15 2009 Jindrich Novy 2007-45 - make kpathsea not dependent on texlive - fix lacheck again 451513 - fix dvips configuration 467542 - update kpathsea description and summary 519257 - use upstream patch to fix pool...

5CVSS5.4AI score0.1192EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2009/04/09 12:0 a.m.29 views

Mandriva Update for tetex MDKSA-2007:230 (tetex)

Check for the Version of tetex OpenVAS Vulnerability Test Mandriva Update for tetex MDKSA-2007:230 tetex Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

9.3CVSS0.7AI score0.18661EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2009/04/09 12:0 a.m.35 views

Mandriva Update for tetex MDKSA-2007:230 (tetex)

Check for the Version of tetex OpenVAS Vulnerability Test Mandriva Update for tetex MDKSA-2007:230 tetex Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

9.3CVSS0.7AI score0.18661EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2009/03/23 12:0 a.m.29 views

Ubuntu Update for tetex-bin, texlive-bin vulnerabilities USN-554-1

Ubuntu Update for Linux kernel vulnerabilities USN-554-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN5541.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for tetex-bin, texlive-bin vulnerabilities USN-554-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

6.8CVSS0.4AI score0.03953EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2008/05/09 12:0 a.m.32 views

openSUSE 10 Security Update : texlive-bin (texlive-bin-5221)

Buffer overflows in dvips and dviljk could be triggered by specially crafted dvi files CVE-2007-5935, CVE-2007-5937. dvips additionally created temporary files in an insecure manner CVE-2007-5936. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...

6.8CVSS5.3AI score0.03953EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.22 views

Debian Security Advisory DSA 207-1 (tetex-bin)

The remote host is missing an update to tetex-bin announced via advisory DSA 207-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

7.5CVSS7AI score0.07953EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2008/01/08 12:0 a.m.31 views

SuSE 10 Security Update : TeX (ZYPP Patch Number 4818)

Buffer overflows in dvips and dviljk could be triggered by specially crafted dvi files CVE-2007-5935 / CVE-2007-5937. dvips additionally created temporary files in an insecure manner. CVE-2007-5936 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novel...

6.8CVSS5.3AI score0.03953EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2007/12/07 12:0 a.m.29 views

Ubuntu 6.06 LTS / 6.10 / 7.04 / 7.10 : tetex-bin, texlive-bin vulnerabilities (USN-554-1)

Bastien Roucaries discovered that dvips as included in tetex-bin and texlive-bin did not properly perform bounds checking. If a user or automated system were tricked into processing a specially crafted dvi file, dvips could be made to crash and execute code as the user invoking the program...

6.8CVSS5.7AI score0.03953EPSS
Exploits1References4
Ubuntu
Ubuntu
added 2007/12/06 8:29 p.m.58 views

USN-554-1: teTeX and TeX Live vulnerabilities

Bastien Roucaries discovered that dvips as included in tetex-bin and texlive-bin did not properly perform bounds checking. If a user or automated system were tricked into processing a specially crafted dvi file, dvips could be made to crash and execute code as the user invoking the program...

6.8CVSS5.5AI score0.03953EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2007/11/26 12:0 a.m.35 views

Fedora 7 : tetex-3.0-40.3.fc7 (2007-3390)

fix t1lib flaw CVE-2007-4033 352271 - fix CVE-2007-4352 CVE-2007-5392 CVE-2007-5393, various xpdf flaws 345121 - xdvi won't segfault if DVI file contains character which is not present in font 243630 - fix dvips -z buffer overflow with long href CVE-2007-5935 368591 - fix insecure usage of...

9.3CVSS7AI score0.18661EPSS
Exploits3References15
Tenable Nessus
Tenable Nessus
added 2007/11/26 12:0 a.m.237 views

Fedora Core 6 : tetex-3.0-36.fc6 (2007-750)

fix dvips -z buffer overflow with long href 368591 - fix insecure usage of temporary file in dviljk 368611, 368641 - update License and BuildRoot tags - fix t1lib flaw CVE-2007-4033 352271 - fix CVE-2007-4352 CVE-2007-5392 CVE-2007-5393, various xpdf flaws 345121 - xdvi won't segfault if DVI file...

9.3CVSS6.9AI score0.18661EPSS
Exploits2References5
Rows per page
Query Builder