Off-by-one error in the QUtf8Decoder::toUnicode function in Trolltech Qt 3 allows context-dependent attackers to cause a denial of service (crash) via a crafted Unicode string that triggers a heap-based buffer overflow. NOTE: Qt 4 has the same error in the QUtf8Codec::convertToUnicode function, but it is not exploitable.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2007-09-18T19:00:00
Updated: 2024-08-07T14:46:38.696Z
Reserved: 2007-08-02T00:00:00
Link: CVE-2007-4137
Vulnrichment
No data.
NVD
Status : Modified
Published: 2007-09-18T19:17:00.000
Modified: 2024-11-21T00:34:52.217
Link: CVE-2007-4137
Redhat