Google Chrome PDFium Component Heap Buffer Overflow Vulnerability

Google Chrome is a web browser from Google, an American company. A heap buffer overflow vulnerability exists in the PDFium component of Google Chrome, which can be exploited by an attacker to execute arbitrary code in the sandbox via specially crafted PDF files...

MachSol MachPanel 安全漏洞

MachSol MachPanel is a cloud automation control panel and billing platform from US-based MachSol. A security vulnerability exists in MachSol MachPanel version 8.0.32, which stems from mishandling of specially crafted PDF files and could lead to the execution of arbitrary web script or HTML...

Apryse WebViewer 跨站脚本漏洞

Apryse WebViewer is a web browser from Apryse Corporation. A security vulnerability exists in Apryse WebViewer v11.1 and prior versions that originates from cross-site scripting in the rendering engine component that allows execution of arbitrary code via specially crafted PDF files...

SUSE CVE-2007-4352

Array index error in the DCTStream::readProgressiveDataUnit method in xpdf/Stream.cc in Xpdf 3.02pl1, as used in poppler, teTeX, KDE, KOffice, CUPS, and other products, allows remote attackers to trigger memory corruption and execute arbitrary code via a crafted PDF file...

CVE-2022-28234

Acrobat Reader DC versions 22.001.20085 and earlier, 20.005.3031x and earlier and 17.012.30205 and earlier is affected by a heap-based buffer overflow vulnerability due to insecure handling of a crafted .pdf file, potentially resulting in arbitrary code execution in the context of the current use...

Google Chrome PDFium Buffer Overflow Vulnerability

Google Chrome is the United States Google Google company developed a Web browser. PDFium is one of the open source PDF rendering engine. A buffer overflow vulnerability exists in PDFium in versions prior to Google Chrome 69.0.3497.81, which stems from the program's failure to perform boundary...

Adobe Digital Editions Remote Code Execution Vulnerability (CNVD-2016-07527)

Adobe Digital Editions is an eBook reading management tool developed by Adobe. Adobe Digital Editions has a security vulnerability, carefully constructed PDF files can make Adobe Digital Editions trigger a memory corruption vulnerability, an attacker can take advantage of this vulnerability in th...

Adobe Digital Editions Remote Code Execution Vulnerability (CNVD-2016-07529)

Adobe Digital Editions is an eBook reading management tool developed by Adobe. Adobe Digital Editions has a security vulnerability, carefully constructed PDF files can make Adobe Digital Editions trigger a memory corruption vulnerability, an attacker can take advantage of this vulnerability in th...

PDF JBIG2 multiple input validation flaws

Multiple "input validation flaws" in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allow remote attackers to execute arbitrary code via a crafted PDF file...

DEBIAN-CVE-2008-2950

The Page destructor in Page.cc in libpoppler in Poppler 0.8.4 and earlier deletes a pageWidgets object even if it is not initialized by a Page constructor, which allows remote attackers to execute arbitrary code via a crafted PDF document...

DEBIAN-CVE-2004-1125

Buffer overflow in the Gfx::doImage function in Gfx.cc for xpdf 3.00, and other products that share code such as tetex-bin and kpdf in KDE 3.2.x to 3.2.3 and 3.3.x to 3.3.2, allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a crafted PD...