Lucene search
K

7 matches found

CNVD
CNVD
added 2017/07/24 12:0 a.m.1 views

FontForge buffer overflow vulnerability (CNVD-2017-18538)

FontForge is an open source font editing tool that supports multiple languages. A buffer overflow vulnerability exists in ValidatePostScriptFontName in FontForge version 20161012. An attacker can exploit this vulnerability with a specially crafted otf file to cause a denial of service or execute...

7.8CVSS7.7AI score0.01208EPSS
Exploits0References1
CNVD
CNVD
added 2017/07/24 12:0 a.m.2 views

FontForge Buffer Overflow Vulnerability

FontForge is an open source font editing tool that supports multiple languages. A buffer overflow vulnerability exists in getsid in FontForge version 20161012. An attacker can exploit this vulnerability with a specially crafted otf file to cause a denial of service or code execution...

7.8CVSS7.8AI score0.01224EPSS
Exploits0References1
CNVD
CNVD
added 2017/07/24 12:0 a.m.2 views

FontForge buffer overflow vulnerability (CNVD-2017-18542)

FontForge is an open source font editing tool that supports multiple languages. A buffer overflow vulnerability exists in readttfcopyrights in FontForge version 20161012. An attacker can exploit this vulnerability to cause a denial of service or code execution with the help of a specially crafted...

7.8CVSS7.8AI score0.01406EPSS
Exploits0References1
CNVD
CNVD
added 2017/07/24 12:0 a.m.3 views

FontForge Denial of Service Vulnerability

FontForge is an open source font editing tool that supports multiple languages. A security vulnerability exists in the weight vector memcpy call to readcfftopdict in FontForge version 20161012. An attacker can exploit this vulnerability to cause a denial of service with the help of an otf file...

5.5CVSS6.7AI score0.00707EPSS
Exploits0References1
CNVD
CNVD
added 2017/07/24 12:0 a.m.2 views

FontForge buffer overflow vulnerability (CNVD-2017-18365)

FontForge is an open source font editing tool that supports multiple languages. A buffer overflow vulnerability exists in PSCharStringToSplines in FontForge version 20161012. An attacker can exploit this vulnerability to cause a denial of service or code execution with the help of a specially...

7.8CVSS7.8AI score0.01339EPSS
Exploits0References1
CNVD
CNVD
added 2017/07/24 12:0 a.m.4 views

FontForge buffer overflow vulnerability (CNVD-2017-18536)

FontForge is an open source font editing tool that supports multiple languages. A buffer overflow vulnerability exists in strnmatch in FontForge version 20161012. An attacker can exploit this vulnerability to cause a denial of service or code execution with the help of a specially crafted otf fil...

7.8CVSS7.8AI score0.01224EPSS
Exploits0References1
OSV
OSV
added 2017/07/23 10:29 p.m.2 views

DEBIAN-CVE-2017-11575

FontForge 20161012 is vulnerable to a buffer over-read in strnmatch char.c resulting in DoS or code execution via a crafted otf file, related to a call from the readttfcopyrights function in parsettf.c...

7.8CVSS7.8AI score0.01224EPSS
Exploits0References1
Rows per page
Query Builder