Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2010-2640

Опубликовано: 07 янв. 2011
Источник: nvd
CVSS2: 7.6
EPSS Низкий

Описание

Array index error in the PK font parser in the dvi-backend component in Evince 2.32 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font in conjunction with a DVI file that is processed by the thumbnailer.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:redhat:evince:*:*:*:*:*:*:*:*
Версия до 2.32 (включая)
cpe:2.3:a:redhat:evince:0.1:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:0.2:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:0.3:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:0.4:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:0.5:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:0.6:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:0.7:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:0.8:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:0.9:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:2.19:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:2.20:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:2.21:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:2.22:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:2.23:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:2.24:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:2.25:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:2.26:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:2.27:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:2.28:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:2.29:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:2.29.92:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:2.30:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:2.30.2:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:2.30.3:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:2.31:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:2.31.1:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:2.31.2:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:2.31.4:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:2.31.4.1:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:2.31.6:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:2.31.6.1:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:2.31.90:*:*:*:*:*:*:*
cpe:2.3:a:redhat:evince:2.31.92:*:*:*:*:*:*:*

EPSS

Процентиль: 91%
0.06484
Низкий

7.6 High

CVSS2

Дефекты

CWE-20

Связанные уязвимости

ubuntu логотип

CVE-2010-2640

ubuntu
больше 14 лет назад

Array index error in the PK font parser in the dvi-backend component in Evince 2.32 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font in conjunction with a DVI file that is processed by the thumbnailer.

redhat логотип

CVE-2010-2640

redhat
больше 14 лет назад

Array index error in the PK font parser in the dvi-backend component in Evince 2.32 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font in conjunction with a DVI file that is processed by the thumbnailer.

debian логотип

CVE-2010-2640

debian
больше 14 лет назад

Array index error in the PK font parser in the dvi-backend component i ...

github логотип

GHSA-8g52-q4jc-4p2g

github
около 3 лет назад

Array index error in the PK font parser in the dvi-backend component in Evince 2.32 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font in conjunction with a DVI file that is processed by the thumbnailer.

oracle-oval логотип

ELSA-2011-0009

oracle-oval
больше 14 лет назад

ELSA-2011-0009: evince security update (MODERATE)

EPSS

Процентиль: 91%
0.06484
Низкий

7.6 High

CVSS2

Дефекты

CWE-20