FreeType 2 before 2.4.7, as used in CoreGraphics in Apple iOS before 5, Mandriva Enterprise Server 5, and possibly other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font, a different vulnerability than CVE-2011-0226.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2011-10-14 03:55
Updated : 2017-08-28 18:30
NVD link : CVE-2011-3256
Mitre link : CVE-2011-3256
JSON object : View
CWE
CWE-94
Improper Control of Generation of Code ('Code Injection')
Products Affected
apple
- iphone_os