CVE-2009-4227

Stack-based buffer overflow in the read_1_3_textobject function in f_readold.c in Xfig 3.2.5b and earlier, and in the read_textobject function in read1_3.c in fig2dev in Transfig 3.2.5a and earlier, allows remote attackers to execute arbitrary code via a long string in a malformed .fig file that uses the 1.3 file format. NOTE: some of these details are obtained from third party information.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:xfig:xfig:*:*:*:*:*:*:*:*
cpe:2.3:a:xfig:xfig:3.2.5:*:*:*:*:*:*:*

History

No history.

Information

Published : 2009-12-08 18:30

Updated : 2024-02-04 17:33


NVD link : CVE-2009-4227

Mitre link : CVE-2009-4227

CVE.ORG link : CVE-2009-4227


JSON object : View

Products Affected

xfig

  • xfig
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer