Description

Buffer overflow in the gdImageStringFTEx function in gdft.c in GD Graphics Library 2.0.33 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted string with a JIS encoded font.

Remediation

References

CVE-2007-0455

Related Vulnerabilities

WordPress Plugin WP Gravity Forms Zendesk Cross-Site Scripting (1.0.7)

WordPress Plugin WordPress Facebook SQL Injection (1.0.8)

WordPress Plugin MailPoet Newsletters (Previous) SQL Injection (2.2)

Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-4581)

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9338)

Severity

High

Classification

CVE-2007-0455 CWE-120

Tags

Missing Update Known Vulnerabilities