CVE-2012-5006

2012-09-1921:00:00

mitre

www.cve.org

buffer overflow

caminova djvu

remote attack

arbitrary code

sjbz chunk

AI Score

Confidence

High

EPSS

0.054

Percentile

93.3%

JSON

Heap-based buffer overflow in npdjvu.dll in Caminova DjVu Browser Plug-in 6.1.4 Build 27351 and other versions before 6.1.4.27993 allows remote attackers to execute arbitrary code via a crafted Sjbz chunk in a djvu file.

References

secunia.com/advisories/46091

www.caminova.com/en/downloads/download.aspx?id=1

www.osvdb.org/78526

www.securityfocus.com/bid/51675