CVE-2010-0829

Name of the Vulnerable Software and Affected Versions dvipng versions 1.11 through 1.12 teTeX (affected versions not specified)

Description The issue is related to multiple array index errors in the set.c file of dvipng, which can be exploited by remote attackers using a malformed DVI file. This can lead to a denial of service, causing the application to crash, or potentially allow the execution of arbitrary code. The exploitation of these vulnerabilities can result in the disruption of protected information and can be carried out remotely.

Recommendations For dvipng versions 1.11 through 1.12, consider updating to a version that includes a fix for the array index errors in the set.c file. For teTeX, at the moment, there is no information about a newer version that contains a fix for this vulnerability.