CVE-2011-0433 in t1libthông tin

Tóm tắt

Bởi MITRE

Heap-based buffer overflow in the linetoken function in afmparse.c in t1lib, as used in teTeX 3.0.x, GNOME evince, and possibly other products, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a DVI file containing a crafted Adobe Font Metrics (AFM) file, a different vulnerability than CVE-2010-2642.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Đặt trước

12/01/2011

Tiết lộ

19/11/2012

Kiểm duyệt

được chấp nhận

mục

VDB-62984

CPE

sẵn sàng

CWE

CWE-119 (Đã xác nhận)

CVSS

6.8 (NVD)

EPSS

0.04210

KEV

không

Các hoạt động

rất thấp

Nguồn

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-0433
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-0433
CVE Details	https://www.cvedetails.com/cve/CVE-2011-0433/

◂ Trước Tổng Quan Tiếp theo ▸

Interested in the pricing of exploits?

See the underground prices here!