1633 matches found
UBUNTU-CVE-2018-16648
In Artifex MuPDF 1.13.0, the fzappendbyte function in fitz/buffer.c allows remote attackers to cause a denial of service segmentation fault via a crafted pdf file. This is caused by a pdf/pdf-device.c pdfdevalpha array-index underflow...
Google Chrome Omnibox Buffer Overflow Vulnerability
Google Chrome is a web browser developed by Google, Inc. and Omnibox is a real-time search engine. A heap buffer overflow vulnerability exists in Omnibox in versions prior to Google Chrome 63.0.3239.84. A remote attacker can exploit this vulnerability to cause heap corruption with the help of...
PT-2018-13669 · Artifex +1 · Mupdf +1
Name of the Vulnerable Software and Affected Versions: Artifex MuPDF version 1.13.0 Description: The issue allows remote attackers to cause a denial of service, resulting in a segmentation fault, via a crafted pdf file. This occurs due to a problem in the pdf get xref entry function...
DEBIAN-CVE-2018-16510
An issue was discovered in Artifex Ghostscript before 9.24. Incorrect exec stack handling in the "CS" and "SC" PDF primitives could be used by remote attackers able to supply crafted PDFs to crash the interpreter or possibly have unspecified other impact...
Artifex Ghostscript Denial of Service Vulnerability (CNVD-2020-54478)
Artifex Ghostscript is an open source Postscript a page description language and programming language used in the electronics industry and desktop publishing parser from Artifex Software that displays Postscript files and prints them on non-Postscript printers. Postscript file. A security...
UBUNTU-CVE-2018-16369
XRef::fetch in XRef.cc in Xpdf 4.00 allows remote attackers to cause a denial of service stack consumption via a crafted pdf file, related to AcroForm::scanField, as demonstrated by pdftohtml. NOTE: this might overlap CVE-2018-7453...
Xpdf Denial of Service Vulnerability (CNVD-2019-17490)
Xpdf is a free PDF viewer and toolkit that includes a text extractor, image converter, HTML converter and more. A denial of service vulnerability exists in XRef::fetch in Xpdf 4.00 in XRef.cc. A remote attacker can exploit this vulnerability to cause a denial of service stack consumption via a...
[SECURITY] Fedora 28 Update: ghostscript-9.23-6.fc28
This package provides useful conversion utilities based on Ghostscript soft ware, for converting PS, PDF and other document formats between each other. Ghostscript is a suite of software providing an interpreter for Adobe Syste ms' PostScript PS and Portable Document Format PDF page description...
podofo denial of service vulnerability (CNVD-2018-18119)
PoDoFo is an open source , written in C++ using the PDF file format library . A denial of service vulnerability exists in the 'PoDoFo::PdfParser::ReadObjects' function in the base/PdfParser.cpp file in PoDoFo version 0.9.6. A remote attacker could exploit this vulnerability to cause a denial of...
The vulnerability of the PDF library in Windows operating systems allows a hacker to execute arbitrary code.
The vulnerability of PDF libraries in Windows operating systems is related to improper handling of objects in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted web page or PDF file...
Buffer Overflow Vulnerability in CAJViewer Full Text Viewer
CAJViewer full-text viewer is a special reader for China Journal Network, supporting TEB, CAJ, PDF format files. CAJViewer Full Text Viewer suffers from a buffer overflow vulnerability that can be exploited by an attacker to cause a denial of service...
CVE-2018-3939
An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick the user...
Foxit Reader Memory Error Reference Remote Code Execution Vulnerability (CNVD-2018-15084)
Foxit Reader old name: Foxit PDF Reader is a set of software used to read PDF format files, by Fujian Foxit Software developed by Foxit Reader is a set of free to use the software, the operating system is mainly based on Microsoft Windows, and as long as there is a Win32 implementation of the...
CVE-2018-14292
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.5096. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
Poppler Buffer Overflow Vulnerability (CNVD-2018-14229)
Poppler is a C++ class library for generating PDF, the library is inherited from Xpdf PDF reader. A buffer overflow vulnerability exists in Poppler 0.62 and earlier versions, which stems from incorrect memory access not mapped in memory space. An attacker could exploit this vulnerability to corru...
CVE-2018-7546
wpsmain.dll in Kingsoft WPS Office 2016 and Jinshan PDF 10.1.0.6621 allows remote attackers to cause a denial of service via a crafted pdf file...
ALPINE-CVE-2018-0361
ClamAV before 0.100.1 lacks a PDF object length check, resulting in an unreasonably long time to parse a relatively small file...
DEBIAN-CVE-2018-0361
ClamAV before 0.100.1 lacks a PDF object length check, resulting in an unreasonably long time to parse a relatively small file...
Adobe Reader PDF Client Request Injection Vulnerability
Adobe Reader is a popular application for working with PDF files. A request injection vulnerability exists in the Adobe Reader PDF client. An attacker can exploit the vulnerability to obtain unauthorized information...
Mozilla Firefox Design Vulnerability
Mozilla Firefox is an open source web browser developed by the Mozilla Foundation in the United States. A security vulnerability exists in the Live Bookmark page and PDF reader in versions of Mozilla Firefox prior to 60. A remote attacker can exploit this vulnerability by performing a social...