Lucene search

K
cnvdChina National Vulnerability DatabaseCNVD-2022-06543
HistoryNov 23, 2020 - 12:00 a.m.

PDFResurrect Heap Buffer Overflow Vulnerability

2020-11-2300:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
pdfresurrect
heap buffer overflow
pdf_get_version
header validation checks
vulnerability
analysis
pdf document

EPSS

0.001

Percentile

50.0%

PDFResurrect is a tool for analyzing PDF documents to help extract old “hidden” versions of pdf from the current pdf. pdf_get_version() in versions prior to PDFResurrect 0.20 has a heap buffer overflow vulnerability. . The vulnerability stems from a lack of header validation checks in PDFResurrect. No details of the vulnerability are available at this time.