Vulnerability Database

296,223

Total vulnerabilities in the database

CVE-2009-3050

Buffer overflow in the set_page_size function in util.cxx in HTMLDOC 1.8.27 and earlier allows context-dependent attackers to execute arbitrary code via a long MEDIA SIZE comment. NOTE: it was later reported that there were additional vectors in htmllib.cxx and ps-pdf.cxx using an AFM font file with a long glyph name, but these vectors do not cross privilege boundaries.

  • Published: Sep 2, 2009
  • Updated: Apr 13, 2023
  • CVE: CVE-2009-3050
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 10
  • AV:N/AC:L/Au:N/C:C/I:C/A:C

CWEs:

Software From Fixed in
htmldoc / htmldoc 1.8.26 1.8.26.x
htmldoc / htmldoc - 1.8.27.x
htmldoc / htmldoc 1.8.24 1.8.24.x
htmldoc / htmldoc 1.8.25 1.8.25.x