Yulun Wu

**Name of the Vulnerable Software and Affected Versions** Mathtex versions 1.05 and earlier **Description** The issue allows a remote attacker to execute arbitrary code via a crafted string in the application URL. This can be exploited by sending a specifically designed request to the affected application. **Recommendations** For Mathtex versions 1.05 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Mathtex versions 1.05 and earlier **Description** The issue allows a remote attacker to execute arbitrary code via the length of the `LaTeX string component`. This can be exploited to gain unauthorized access and control over the system. **Recommendations** For Mathtex versions 1.05 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Mathtex versions 1.05 and earlier **Description** The issue allows a remote attacker to cause a denial of service when using `convertpath`. It is related to a Buffer Overflow vulnerability in the `main()` function. **Recommendations** For Mathtex versions 1.05 and earlier, consider disabling the `main()` function or restricting the use of `convertpath` until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Mathtex versions 1.05 and earlier **Description** An infinite loop issue in the software allows remote attackers to consume CPU resources via a crafted string in the application URL. This can lead to potential denial-of-service conditions. **Recommendations** For Mathtex versions 1.05 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Mathtex versions 1.05 and earlier **Description** The issue allows a remote attacker to cause a denial of service via a crafted string in the application URL, specifically exploiting a Buffer Overflow vulnerability in the `nomath()` function. **Recommendations** For Mathtex versions 1.05 and earlier, as a temporary workaround, consider disabling the `nomath()` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Mathtex versions 1.05 and earlier **Description** The issue allows a remote attacker to execute arbitrary code via a crafted string in the application URL. This is due to a Stack Overflow vulnerability in the `validate()` function. **Recommendations** For Mathtex versions 1.05 and earlier, as a temporary workaround, consider disabling the `validate()` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** exiftags version 1.01 **Description** The issue is a heap-based buffer overflow caused by the `snprintf` function writing to an unexpected address in the `nikon prop1` function within `nikon.c`. This occurs because `snprintf` can write a size of 28, leading to the overflow. **Recommendations** For exiftags version 1.01, consider disabling the `nikon prop1` function in `nikon.c` as a temporary workaround until a patch is available. Restrict the use of `snprintf` in this context to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.