5 matches found
Remote Code Execution (RCE)
libfontforge.so is vulnerable to remote code execution RCE attacks. A malicious user can pass an otf file to the strnmatch function in char.c to cause a buffer overflow that can crash the application or cause arbitrary code to be executed...
Remote Code Execution (RCE)
libfontforge.so is vulnerable to remote code execution RCE attacks. A malicious user can pass an otf file to the PSCharStringToSplines function in psread.c to cause a buffer overflow that can crash the application or cause arbitrary code execution...
Remote Code Execution (RCE)
libfontforge.so is vulnerable to remote code execution RCE attacks.A malicious user can pass a ttf file to the getsid function in the parsettf.c file to cause a buffer over-read that can crash the application or cause arbitrary code to be executed...
Remote Code Execution (RCE) Through Buffer Overflow
libfontforge.so is vulnerable to remote code execution RCE attacks through buffer overflow. A malicious user can pass a ttf file to the readcffset function in parsettf.c to cause a buffer overflow that can crash the application or cause arbitrary code to be executed...
Remote Code Execution (RCE) Through Buffer Overread
libfontforge.so is vulnerable to remote code execution RCE attacks. A malicious user can pass a ttf file that when parsed causes an out-of-bound error that can crash the application or cause arbitrary code to be executed...