Lucene search
TalosCVELIST:CVE-2017-2863HistoryJul 12, 2017 - 5:00 p.m.
CVE-2017-2863
2017-07-1217:00:00
talos
www.cve.org
2
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
37.4%
An out-of-bounds write vulnerability exists in the PDF parsing functionality of Infix 7.1.5. A specially crafted PDF file can cause a vulnerability resulting in potential memory corruption. An attacker can send the victim a specific PDF file to trigger this vulnerability.
CNA Affected
[
{
"product": "Infix",
"vendor": "Iceni",
"versions": [
{
"status": "affected",
"version": "7.1.5.0"
}
]
}
]Related
talosblog
talosblog
Vulnerability Spotlight: Iceni Infix PDF Editor Memory Corruption
2017-07-11 07:29:00
seebug
seebug
Iceni Infix PDF parsing SetSize Code Execution Vulnerability(CVE-2017-2863)
2017-09-14 00:00:00
cve
cve
CVE-2017-2863
2017-07-12 17:29:00
prion
prion
Memory corruption
2017-07-12 17:29:00
talos
talos
Iceni Infix PDF parsing SetSize Code Execution Vulnerability
2017-07-11 00:00:00
nvd
nvd
CVE-2017-2863
2017-07-12 17:29:00
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
37.4%
Related for CVELIST:CVE-2017-2863