GOCR ReadPGM NetPBM Remote Client-Side Integer Overflow Vulnerability

GOCR ReadPGM NetPBM Remote Client-Side Integer Overflow Vulnerability

A remote, client-side integer overflow vulnerability affects GOCR. This issue is due to a failure of the application to properly validate user-supplied image size values prior to using them to copy image data into static process buffers.

An attacker may exploit this issue to overflow a process buffer and execute arbitrary code with the privileges of the user that activated the vulnerable application. This may facilitate unauthorized access or privilege escalation.