Vulnerability & Exploit Database

Back to search

Sun Patch: StarSuite 8 (Solaris): Update 18

Severity CVSS Published Added Modified
7 (AV:N/AC:M/Au:N/C:P/I:P/A:P) May 16, 2007 May 16, 2007 May 26, 2016

Description

Integer signedness error in truetype/ttgload.c in Freetype 2.3.4 and earlier might allow remote attackers to execute arbitrary code via a crafted TTF image with a negative n_points value, which leads to an integer overflow and heap-based buffer overflow.

Free Nexpose Download

Discover, prioritize, and remediate security risks today!

 Download now

References

Solution

sunpatch-solaris-120189

Related Vulnerabilities