Ctan: >> Mathtex Security Vulnerabilities
Buffer Overflow vulnerability in the nomath() function in Mathtex v.1.05 and before allows a remote attacker to cause a denial of service via a crafted string in the application URL.
CVSS Score
7.5
EPSS Score
0.008
Published
2024-01-24
Stack Overflow vulnerability in the validate() function in Mathtex v.1.05 and before allows a remote attacker to execute arbitrary code via crafted string in the application URL.
CVSS Score
9.8
EPSS Score
0.013
Published
2024-01-24
An infinite loop issue discovered in Mathtex 1.05 and before allows a remote attackers to consume CPU resources via crafted string in the application URL.
CVSS Score
7.5
EPSS Score
0.009
Published
2024-01-24
Buffer Overflow vulnerability in Mathtex v.1.05 and before allows a remote attacker to execute arbitrary code via the length of the LaTeX string component.
CVSS Score
9.8
EPSS Score
0.013
Published
2024-01-24
Buffer Overflow vulnerability in the main() function in Mathtex 1.05 and before allows a remote attacker to cause a denial of service when using \convertpath.
CVSS Score
7.5
EPSS Score
0.008
Published
2024-01-24
Command Injection vulnerability in Mathtex v.1.05 and before allows a remote attacker to execute arbitrary code via crafted string in application URL.
CVSS Score
9.8
EPSS Score
0.025
Published
2024-01-24