CVE-2006-1861
Published May 23, 2006
Last updated a year ago
Overview
- Description
- Multiple integer overflows in FreeType before 2.2 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via attack vectors related to (1) bdf/bdflib.c, (2) sfnt/ttcmap.c, (3) cff/cffgload.c, and (4) the read_lwfn function and a crafted LWFN file in base/ftmac.c. NOTE: item 4 was originally identified by CVE-2006-2493.
- Source
- secalert@redhat.com
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 7.5
- Impact score
- 6.4
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- CWE-189
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:freetype:freetype:2.0.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "28CA4C7D-D70A-44CF-8E3D-F2612CCA0799"
},
{
"criteria": "cpe:2.3:a:freetype:freetype:2.1.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "369D87D8-E4A7-4EC4-B508-2940EE174F95"
},
{
"criteria": "cpe:2.3:a:freetype:freetype:2.1.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "288FDB59-7FE4-4351-8822-554ADF07C79A"
},
{
"criteria": "cpe:2.3:a:freetype:freetype:2.1.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B681257A-F8D8-46D5-995D-BC44F54DD5C0"
},
{
"criteria": "cpe:2.3:a:freetype:freetype:2.1.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "56E0DEB6-4414-49AB-88E9-988CE5D8EF67"
},
{
"criteria": "cpe:2.3:a:freetype:freetype:2.1.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "56A90D08-2CAF-422F-8587-7D88EC7632A1"
},
{
"criteria": "cpe:2.3:a:freetype:freetype:2.1.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9B944FEB-F69D-4F6C-9485-26F95A5874B6"
},
{
"criteria": "cpe:2.3:a:freetype:freetype:2.1.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F73474B9-6853-4C5C-9CB9-5F4D3080D1C5"
},
{
"criteria": "cpe:2.3:a:freetype:freetype:2.1.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5283E910-D512-481C-804E-8717A83B24CB"
}
],
"operator": "OR"
}
]
}
]