12 matches found
SUSE CVE-2010-0739
Integer overflow in the predospecial function in dospecial.c in dvips in 1 TeX Live and 2 teTeX might allow user-assisted remote attackers to execute arbitrary code via a crafted DVI file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party...
SUSE CVE-2010-1440
Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and earlier, and teTeX, allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a special command in a DVI file, related to the 1 predospecial and 2 bbdospecial function...
TeX Live predospecial()函数.dvi文件解析整数溢出漏洞
BUGTRAQ ID: 39500 CVECAN ID: CVE-2010-0739 TeX Live是用于创建TeX排版系统的工具。 TeX Live的dospecial.c文件中的predospecial函数在处理.dvi文件时存在最终可导致堆溢出的整数溢出漏洞。用户受骗打开了畸形的.dvi文件就可以触发这个溢出,导致以运行应用程序用户的权限执行任意代码。 TeX Live 3.0 TeX Live 2008 TeX Live 2007 TeX Live 2.0 TeX Live 1.0 厂商补丁: RedHat ------...
DEBIAN-CVE-2010-1440
Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and earlier, and teTeX, allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a special command in a DVI file, related to the 1 predospecial and 2 bbdospecial function...
texlive: Integer overflow by processing special commands
Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and earlier, and teTeX, allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a special command in a DVI file, related to the 1 predospecial and 2 bbdospecial function...
texlive: Integer overflow by processing special commands
Integer overflow in the predospecial function in dospecial.c in dvips in 1 TeX Live and 2 teTeX might allow user-assisted remote attackers to execute arbitrary code via a crafted DVI file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party...
texlive: Integer overflow by processing special commands
Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and earlier, and teTeX, allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a special command in a DVI file, related to the 1 predospecial and 2 bbdospecial function...
texlive: Integer overflow by processing special commands
Integer overflow in the predospecial function in dospecial.c in dvips in 1 TeX Live and 2 teTeX might allow user-assisted remote attackers to execute arbitrary code via a crafted DVI file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party...
texlive: Integer overflow by processing special commands
Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and earlier, and teTeX, allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a special command in a DVI file, related to the 1 predospecial and 2 bbdospecial function...
PT-2010-3127 · Thomas Esser +2 · Tetex +2
Name of the Vulnerable Software and Affected Versions: TeX Live versions prior to 2010 teTeX affected versions not specified Description: The issue is related to multiple integer overflows in the dospecial.c file of the dvips component, specifically in the predospecial and bbdospecial functions...
DEBIAN-CVE-2010-0739
Integer overflow in the predospecial function in dospecial.c in dvips in 1 TeX Live and 2 teTeX might allow user-assisted remote attackers to execute arbitrary code via a crafted DVI file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party...
PT-2010-2483 · Thomas Esser +2 · Tetex +2
Name of the Vulnerable Software and Affected Versions: TeX Live affected versions not specified teTeX affected versions not specified Description: The issue is related to an integer overflow in the predospecial function, which might allow attackers to execute arbitrary code via a crafted DVI file...