Lucene search
+L

1633 matches found

OSV
OSV
added 2018/09/06 11:29 p.m.2 views

UBUNTU-CVE-2018-16648

In Artifex MuPDF 1.13.0, the fzappendbyte function in fitz/buffer.c allows remote attackers to cause a denial of service segmentation fault via a crafted pdf file. This is caused by a pdf/pdf-device.c pdfdevalpha array-index underflow...

5.5CVSS6.4AI score0.0147EPSS
Exploits1References5
CNVD
CNVD
added 2018/09/06 12:0 a.m.14 views

Google Chrome Omnibox Buffer Overflow Vulnerability

Google Chrome is a web browser developed by Google, Inc. and Omnibox is a real-time search engine. A heap buffer overflow vulnerability exists in Omnibox in versions prior to Google Chrome 63.0.3239.84. A remote attacker can exploit this vulnerability to cause heap corruption with the help of...

8.8CVSS9.2AI score0.01541EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2018/09/06 12:0 a.m.5 views

PT-2018-13669 · Artifex +1 · Mupdf +1

Name of the Vulnerable Software and Affected Versions: Artifex MuPDF version 1.13.0 Description: The issue allows remote attackers to cause a denial of service, resulting in a segmentation fault, via a crafted pdf file. This occurs due to a problem in the pdf get xref entry function...

9.8CVSS6.5AI score0.15181EPSS
Exploits19References60
OSV
OSV
added 2018/09/05 6:29 a.m.2 views

DEBIAN-CVE-2018-16510

An issue was discovered in Artifex Ghostscript before 9.24. Incorrect exec stack handling in the "CS" and "SC" PDF primitives could be used by remote attackers able to supply crafted PDFs to crash the interpreter or possibly have unspecified other impact...

7.8CVSS8.3AI score0.01745EPSS
Exploits1References1
CNVD
CNVD
added 2018/09/05 12:0 a.m.2 views

Artifex Ghostscript Denial of Service Vulnerability (CNVD-2020-54478)

Artifex Ghostscript is an open source Postscript a page description language and programming language used in the electronics industry and desktop publishing parser from Artifex Software that displays Postscript files and prints them on non-Postscript printers. Postscript file. A security...

7.8CVSS7.8AI score0.01745EPSS
Exploits1References1
OSV
OSV
added 2018/09/03 12:29 a.m.15 views

UBUNTU-CVE-2018-16369

XRef::fetch in XRef.cc in Xpdf 4.00 allows remote attackers to cause a denial of service stack consumption via a crafted pdf file, related to AcroForm::scanField, as demonstrated by pdftohtml. NOTE: this might overlap CVE-2018-7453...

5.5CVSS6.8AI score0.01618EPSS
Exploits1References3
CNVD
CNVD
added 2018/09/03 12:0 a.m.4 views

Xpdf Denial of Service Vulnerability (CNVD-2019-17490)

Xpdf is a free PDF viewer and toolkit that includes a text extractor, image converter, HTML converter and more. A denial of service vulnerability exists in XRef::fetch in Xpdf 4.00 in XRef.cc. A remote attacker can exploit this vulnerability to cause a denial of service stack consumption via a...

5.5CVSS6AI score0.01618EPSS
Exploits1References1
Fedora
Fedora
added 2018/09/02 5:57 a.m.35 views

[SECURITY] Fedora 28 Update: ghostscript-9.23-6.fc28

This package provides useful conversion utilities based on Ghostscript soft ware, for converting PS, PDF and other document formats between each other. Ghostscript is a suite of software providing an interpreter for Adobe Syste ms' PostScript PS and Portable Document Format PDF page description...

7.8CVSS1.9AI score0.03019EPSS
Exploits0
CNVD
CNVD
added 2018/08/27 12:0 a.m.7 views

podofo denial of service vulnerability (CNVD-2018-18119)

PoDoFo is an open source , written in C++ using the PDF file format library . A denial of service vulnerability exists in the 'PoDoFo::PdfParser::ReadObjects' function in the base/PdfParser.cpp file in PoDoFo version 0.9.6. A remote attacker could exploit this vulnerability to cause a denial of...

6.8AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2018/08/23 12:0 a.m.11 views

The vulnerability of the PDF library in Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of PDF libraries in Windows operating systems is related to improper handling of objects in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted web page or PDF file...

7.6CVSS5.9AI score0.18594EPSS
Exploits0References3
CNVD
CNVD
added 2018/08/14 12:0 a.m.4 views

Buffer Overflow Vulnerability in CAJViewer Full Text Viewer

CAJViewer full-text viewer is a special reader for China Journal Network, supporting TEB, CAJ, PDF format files. CAJViewer Full Text Viewer suffers from a buffer overflow vulnerability that can be exploited by an attacker to cause a denial of service...

7.2AI score
Exploits0
OSV
OSV
added 2018/08/01 8:29 p.m.6 views

CVE-2018-3939

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick the user...

8.8CVSS5.8AI score0.02347EPSS
Exploits1References2
CNVD
CNVD
added 2018/08/01 12:0 a.m.6 views

Foxit Reader Memory Error Reference Remote Code Execution Vulnerability (CNVD-2018-15084)

Foxit Reader old name: Foxit PDF Reader is a set of software used to read PDF format files, by Fujian Foxit Software developed by Foxit Reader is a set of free to use the software, the operating system is mainly based on Microsoft Windows, and as long as there is a Win32 implementation of the...

8.8CVSS8.8AI score0.02773EPSS
Exploits0References1
OSV
OSV
added 2018/07/31 8:29 p.m.4 views

CVE-2018-14292

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.5096. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

8.8CVSS6.1AI score0.02773EPSS
Exploits0References2
CNVD
CNVD
added 2018/07/26 12:0 a.m.2 views

Poppler Buffer Overflow Vulnerability (CNVD-2018-14229)

Poppler is a C++ class library for generating PDF, the library is inherited from Xpdf PDF reader. A buffer overflow vulnerability exists in Poppler 0.62 and earlier versions, which stems from incorrect memory access not mapped in memory space. An attacker could exploit this vulnerability to corru...

6.5CVSS6.3AI score0.0315EPSS
Exploits1References1
OSV
OSV
added 2018/07/18 4:29 p.m.3 views

CVE-2018-7546

wpsmain.dll in Kingsoft WPS Office 2016 and Jinshan PDF 10.1.0.6621 allows remote attackers to cause a denial of service via a crafted pdf file...

5.5CVSS5.8AI score0.01391EPSS
Exploits0References1
OSV
OSV
added 2018/07/16 5:29 p.m.3 views

ALPINE-CVE-2018-0361

ClamAV before 0.100.1 lacks a PDF object length check, resulting in an unreasonably long time to parse a relatively small file...

3.3CVSS8.5AI score0.01621EPSS
Exploits0References1
OSV
OSV
added 2018/07/16 5:29 p.m.1 views

DEBIAN-CVE-2018-0361

ClamAV before 0.100.1 lacks a PDF object length check, resulting in an unreasonably long time to parse a relatively small file...

3.3CVSS5.8AI score0.01621EPSS
Exploits0References1
CNVD
CNVD
added 2018/06/13 12:0 a.m.2 views

Adobe Reader PDF Client Request Injection Vulnerability

Adobe Reader is a popular application for working with PDF files. A request injection vulnerability exists in the Adobe Reader PDF client. An attacker can exploit the vulnerability to obtain unauthorized information...

7.2AI score
Exploits0References1
CNVD
CNVD
added 2018/06/05 12:0 a.m.6 views

Mozilla Firefox Design Vulnerability

Mozilla Firefox is an open source web browser developed by the Mozilla Foundation in the United States. A security vulnerability exists in the Live Bookmark page and PDF reader in versions of Mozilla Firefox prior to 60. A remote attacker can exploit this vulnerability by performing a social...

4.3CVSS8.9AI score0.01623EPSS
Exploits0References1
Rows per page
Query Builder