Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-1141

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-1141
Last Modified 05 Sep 2008 04:48:19
Published 15 Apr 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-1141

Summary

Integer overflow in the readpgm function in pnm.c for GOCR 0.40, when using the netpbm library, allows remote attackers to execute arbitrary code via a PNM file with large width and height values, which leads to a heap-based buffer overflow.

Vulnerable Systems

Application

  • Gocr Optical Character Recognition Utility 0.3.2

  • Gocr Optical Character Recognition Utility 0.3.4

  • Gocr Optical Character Recognition Utility 0.37

  • Gocr Optical Character Recognition Utility 0.39

  • Gocr Optical Character Recognition Utility 0.40


References

MISC - http://www.overflow.pl/adv/gocr.txt

BUGTRAQ - 20050415 [Overflow.pl] GOCR - Multiple vulnerabilities


Last Updated: 27 May 2016 10:40:03