Forkosh: Security Vulnerabilities
Multiple stack-based buffer overflows in mimetex.cgi in mimeTeX, when downloaded before 20090713, allow remote attackers to execute arbitrary code via a TeX file with long (1) picture, (2) circle, or (3) input tags.
CVSS Score
10.0
EPSS Score
0.118
Published
2009-07-14
The getdirective function in mathtex.cgi in mathTeX, when downloaded before 20090713, allows remote attackers to execute arbitrary commands via shell metacharacters in the dpi tag.
CVSS Score
7.5
EPSS Score
0.01
Published
2009-07-14
Multiple unspecified vulnerabilities in mimeTeX, when downloaded before 20090713, have unknown impact and attack vectors related to the (1) \environ, (2) \input, and (3) \counter TeX directives.
CVSS Score
10.0
EPSS Score
0.005
Published
2009-07-14
Multiple stack-based buffer overflows in mathtex.cgi in mathTeX, when downloaded before 20090713, have unspecified impact and remote attack vectors.
CVSS Score
10.0
EPSS Score
0.01
Published
2009-07-14
mathtex.cgi in mathTeX, when downloaded before 20090713, does not securely create temporary files, which has unspecified impact and local attack vectors.
CVSS Score
7.2
EPSS Score
0.001
Published
2009-07-14