Vulnerabilities > Graphviz > Graphviz > 1.7.5.5
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-10-14 | CVE-2008-4555 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Graphviz Stack-based buffer overflow in the push_subg function in parser.y (lib/graph/parser.c) in Graphviz 2.20.2, and possibly earlier versions, allows user-assisted remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a DOT file with a large number of Agraph_t elements. | 8.5 |
| 2005-12-31 | CVE-2005-4803 | Unspecified vulnerability in Graphviz graphviz before 2.2.1 allows local users to overwrite arbitrary files via a symlink attack on temporary files. | 3.6 |