2 matches found
CVE-2009-1383
CVE-2009-1383 concerns mathTeX: the getdirective function in mathtex.cgi mishandles input in the dpi tag, allowing remote command execution via shell metacharacters before 20090713. Multiple sources (Veracode, Tenable NASL, NVD/OSVUbuntu/PRION) describe remote code execution risk for mathTeX, wit...
CVE-2009-2460
CVE-2009-2460 affects mathTeX: the script mathtex.cgi contains multiple stack-based buffer overflows introduced by improper bounds checking, when downloaded before 2009-07-13. The incident is described as having unspecified impact and remote attack vectors in the CVE records, while Veracode notes...