CVE-2005-1141

Name of the Vulnerable Software and Affected Versions GOCR version 0.40

Description The issue is related to an integer overflow in the readpgm function in pnm.c, which occurs when using the netpbm library. This allows remote attackers to execute arbitrary code via a PNM file with large width and height values, leading to a heap-based buffer overflow.

Recommendations For GOCR version 0.40, consider disabling the readpgm function in pnm.c as a temporary workaround until a patch is available. Restrict access to PNM files with large width and height values to minimize the risk of exploitation.