[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96174

 
 

909

 
 

78077

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2010-3855

Date: (C)2010-11-26   (M)2017-05-05
 
CVSS Score: 6.8Access Vector: NETWORK
Exploitability Subscore: 8.6Access Complexity: MEDIUM
Impact Subscore: 6.4Authentication: NONE
 Confidentiality: PARTIAL
 Integrity: PARTIAL
 Availability: PARTIAL











Buffer overflow in the ft_var_readpackedpoints function in truetype/ttgxvar.c in FreeType 2.4.3 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TrueType GX font.

Reference:
SECTRACK-1024745
SECUNIA-42289
SECUNIA-42295
SECUNIA-43138
BID-44214
SECUNIA-48951
ADV-2010-3037
ADV-2011-0246
APPLE-SA-2011-03-09-1
APPLE-SA-2011-03-09-3
APPLE-SA-2011-03-21-1
APPLE-SA-2011-07-15-1
APPLE-SA-2011-07-15-2
DSA-2155
FEDORA-2010-17728
FEDORA-2010-17742
FEDORA-2010-17755
MDVSA-2010:235
MDVSA-2010:236
RHSA-2010:0889
USN-1013-1
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=602221
http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=59eb9f8cfe7d1df379a2318316d1f04f80fba54a
http://support.apple.com/kb/HT4564
http://support.apple.com/kb/HT4565
http://support.apple.com/kb/HT4581
http://support.apple.com/kb/HT4802
http://support.apple.com/kb/HT4803
http://support.avaya.com/css/P8/documents/100122733
https://savannah.nongnu.org/bugs/?31310

CPE    32
cpe:/a:freetype:freetype:2.3.6
cpe:/a:freetype:freetype:2.3.7
cpe:/a:freetype:freetype:2.3.8
cpe:/a:freetype:freetype:2.3.1
...
CWE    1
CWE-119
OVAL    15
oval:org.secpod.oval:def:100558
oval:org.secpod.oval:def:200169
oval:org.secpod.oval:def:700039
oval:org.secpod.oval:def:102805
...

© 2013 SecPod Technologies