CVE-2014-2240

CVE-2014-2240 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Stack-based buffer overflow in the cf2_hintmap_build function in cff/cf2hints.c in FreeType before 2.5.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large number of stem hints in a font file.

Learn more about our Web Application Penetration Testing UK.