- Home
- CVEs with nessus.description==Several local vulnerabilities have been discovered in freetype, a FreeType 2 font engine, which could allow the execution of arbitrary code.
The Common Vulnerabilities and Exposures project identifies the following problems :
- CVE-2008-1806 An integer overflow allows context-dependent attackers to execute arbitrary code via a crafted set of values within the Private dictionary table in a Printer Font Binary (PFB) file.
- CVE-2008-1807 The handling of an invalid 'number of axes' field in the PFB file could trigger the freeing of arbitrary memory locations, leading to memory corruption.
- CVE-2008-1808 Multiple off-by-one errors allowed the execution of arbitrary code via malformed tables in PFB files, or invalid SHC instructions in TTF files.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top