libgd graphics library code execution
Published:		31.01.2007
Source:		CVE
SecurityVulns ID:		7131
Type:		library
Level:		6/10
Description:		JIS fonts parsing problem in gdImageStringFTEx() function.

Affected:		GD : libgd 2.0
		TETEX : tetex 3.0
CVE:		CVE-2007-0455 (Buffer overflow in the gdImageStringFTEx function in gdft.c in GD Graphics Library 2.0.33 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted string with a JIS encoded font.)

Discuss:

Read or add your comments to this news (0 comments)