Lucene search
HistoryOct 03, 2022 - 4:15 p.m.
CVE-2011-4217
investintech
slimpdf reader
cve-2011-4217
remote code execution
denial of service
nvd
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
8.1 High
AI Score
Confidence
High
0.008 Low
EPSS
Percentile
82.0%
Investintech.com SlimPDF Reader does not properly restrict read operations during block data moves, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document.
Affected configurations
Node
investintechslimpdf_readerMatch-
| CPE | Name | Operator | Version |
|---|---|---|---|
| investintech:slimpdf_reader | investintech slimpdf reader | eq | - |
References
Related
prion
prion
Code injection
2011-11-01 19:55:00
nvd
nvd
CVE-2011-4217
2011-11-01 19:55:02
cvelist
cvelist
CVE-2011-4217
2022-10-03 16:15:13
openvas
openvas
Investintech Products Denial of Service Vulnerabilities
2011-11-09 00:00:00
Investintech Products Denial of Service Vulnerabilities
2011-11-09 00:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
8.1 High
AI Score
Confidence
High
0.008 Low
EPSS
Percentile
82.0%
Related for CVE-2011-4217