Vulnerabilities > Forkosh

DATE CVE VULNERABILITY TITLE RISK
2009-07-14 CVE-2009-2461 Permissions, Privileges, and Access Controls vulnerability in Forkosh Mathtex 1.00/1.01
mathtex.cgi in mathTeX, when downloaded before 20090713, does not securely create temporary files, which has unspecified impact and local attack vectors.
local
low complexity
forkosh CWE-264
7.2
2009-07-14 CVE-2009-2460 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Forkosh Mathtex
Multiple stack-based buffer overflows in mathtex.cgi in mathTeX, when downloaded before 20090713, have unspecified impact and remote attack vectors.
network
low complexity
forkosh CWE-119
critical
10.0
2009-07-14 CVE-2009-2459 Unspecified vulnerability in Forkosh Mimetex
Multiple unspecified vulnerabilities in mimeTeX, when downloaded before 20090713, have unknown impact and attack vectors related to the (1) \environ, (2) \input, and (3) \counter TeX directives.
network
low complexity
forkosh
critical
10.0
2009-07-14 CVE-2009-1383 Code Injection vulnerability in Forkosh Mathtex
The getdirective function in mathtex.cgi in mathTeX, when downloaded before 20090713, allows remote attackers to execute arbitrary commands via shell metacharacters in the dpi tag.
network
low complexity
forkosh CWE-94
7.5
2009-07-14 CVE-2009-1382 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Forkosh Mimetex
Multiple stack-based buffer overflows in mimetex.cgi in mimeTeX, when downloaded before 20090713, allow remote attackers to execute arbitrary code via a TeX file with long (1) picture, (2) circle, or (3) input tags.
network
low complexity
forkosh CWE-119
critical
10.0