Unrated severityNVD Advisory· Published Apr 15, 2005· Updated Apr 16, 2026

CVE-2005-1142

Description

Heap-based buffer overflow in the readpgm function in pnm.c for GOCR 0.40, when it is not using netpbm, allows remote attackers to execute arbitrary code via a P3 format PNM file with more data than implied by its width and height values.

Affected products

Gocr/Optical Character Recognition Utility5 versions
cpe:2.3:a:gocr:optical_character_recognition_utility:0.3.2:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:gocr:optical_character_recognition_utility:0.3.2:*:*:*:*:*:*:*
- cpe:2.3:a:gocr:optical_character_recognition_utility:0.3.4:*:*:*:*:*:*:*
- cpe:2.3:a:gocr:optical_character_recognition_utility:0.37:*:*:*:*:*:*:*
- cpe:2.3:a:gocr:optical_character_recognition_utility:0.39:*:*:*:*:*:*:*
- cpe:2.3:a:gocr:optical_character_recognition_utility:0.40:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.overflow.pl/adv/gocr.txtnvdExploitVendor Advisory
marc.infonvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.003
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000