← Back

CVE-2010-1440

nvd nist
Published: May 7, 2010Modified: Apr 29, 2026

JSON object

Loading...
6.8
Vector
AV:N/AC:M/Au:N/C:P/I:P/A:P
Exploitability: 8.6 / Impact: 6.4
Source: NVD

Description

Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and earlier, and teTeX, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a special command in a DVI file, related to the (1) predospecial and (2) bbdospecial functions, a different vulnerability than CVE-2010-0739.

Affected (13)

Products: Tug: Tetex, Tex Live
Tug
2 products
Tetex
Tex Live
Configuration A
13 vulnerable
Vulnerable SoftwareAffected Versions
Tetex
All versions
Tug
Tex Live
Up to 2009
Tex Live
Version 1996
Tex Live
Version 1998
Tex Live
Version 1999
Tex Live
Version 2000
Tex Live
Version 2001
Tex Live
Version 2002
Tex Live
Version 2003
Tex Live
Version 2004
Tex Live
Version 2005
Tex Live
Version 2007
Tex Live
Version 2008

Related CWEs

CWE-189
CWE-189

References (14)

Source: secalert@redhat.com
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.