Description
Buffer overflow in the gdImageStringFTEx function in gdft.c in GD Graphics Library 2.0.33 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted string with a JIS encoded font.
Remediation
References
Related Vulnerabilities
Moodle Insufficient Verification of Data Authenticity Vulnerability (CVE-2020-1755)
GeoServer Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-51444)
WordPress Plugin bodi0`s Easy cache Cross-Site Scripting (0.8)
WordPress Plugin WordPress Colorbox Lightbox Cross-Site Scripting (1.1.2)