Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2010-1440

Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and earlier, and teTeX, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a special command in a DVI file, related to the (1) predospecial and (2) bbdospecial functions, a different vulnerability than CVE-2010-0739.

  • Published: May 7, 2010
  • Updated: Apr 13, 2023
  • CVE: CVE-2010-1440
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 6.8
  • AV:N/AC:M/Au:N/C:P/I:P/A:P

CWEs:

Software From Fixed in
tug / tex_live 2007 2007.x
tug / tetex - -
tug / tex_live 2008 2008.x
tug / tex_live 2004 2004.x
tug / tex_live - 2009.x
tug / tex_live 2002 2002.x
tug / tex_live 1996 1996.x
tug / tex_live 2001 2001.x
tug / tex_live 1999 1999.x
tug / tex_live 2005 2005.x
tug / tex_live 1998 1998.x
tug / tex_live 2000 2000.x
tug / tex_live 2003 2003.x