34 matches found
Code injection
Investintech.com SlimPDF Reader does not properly restrict read operations during block data moves, which allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PDF document...
CVE-2011-4220
Investintech.com SlimPDF Reader does not properly restrict the arguments to unspecified function calls, which allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PDF document...
CVE-2011-4218
Investintech.com SlimPDF Reader does not prevent faulting-instruction data from affecting write operations, which allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PDF document...
CVE-2011-4216
Investintech.com SlimPDF Reader does not properly restrict write operations, which allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PDF document...
CVE-2011-4218
Investintech SlimPDF Reader is affected by CVE-2011-4218: a flaw where faulting-instruction data can affect write operations in a crafted PDF, potentially causing application crash or remote code execution. Exploitation details and affected versions are not provided in the connected documents; no...
CVE-2011-4217
Investintech SlimPDF Reader is affected by CVE-2011-4217. The flaw arises because read operations are not properly restricted during block data moves in PDF processing, allowing remote attackers to crash the application or potentially execute arbitrary code via a crafted PDF document. This CVE is...
CVE-2011-4216
CVE-2011-4216 affects Investintech SlimPDF Reader. The vulnerability stems from improper restriction of write operations in the PDF handling component, allowing remote attackers to cause a crash or possibly execute arbitrary code via a crafted PDF. The issue is confirmed in multiple security feed...
CVE-2011-4220
SlimPDF Reader (Investintech) is affected by CVE-2011-4220 due to improper restriction of arguments in PDF function calls, enabling: DoS (crash) and potential arbitrary code execution via crafted PDFs. Multiple connected sources confirm the vulnerability and its presence in early versions; a miti...
CVE-2011-4217
Investintech.com SlimPDF Reader does not properly restrict read operations during block data moves, which allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PDF document...
CVE-2011-4219
Investintech SlimPDF Reader is affected by CVE-2011-4219, where faulting-address data can influence branch selection, allowing remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document. The connected sources confirm the product...
SlimPDF Reader PoC
No description provided by source. Slimpdf Reader from investintech, http://www.investintech.com/resources/freetools/slimpdfreader/ is prone to several overflows that can lead to code execution. The crash below is triggered by simply adding 50.000 random characters in the header of a pdf file...
SlimPDF Reader缓冲区溢出漏洞
Bugtraq ID: 47821 SlimPDF Reader是一款超轻量级免费PDF阅读器。 处理PDF文件存在边界错误,构建恶意文件诱使用户解析可触发基于堆的缓冲区溢出。 成功利用允许执行任意代码,但需要应用程序在安装过程中配置为默认关联PDF文件非默认选项。 InvestInTech SlimPDF Reader 厂商解决方案 目前没有详细解决方案提供: http://www.investintech.com/resources/freetools/slimpdfreader/ http://sebug.net/exploit/20545/...
SlimPDF Reader - Denial of Service (PoC)
SlimPDF Reader - Denial of Service PoC Slimpdf Reader from investintech, http://www.investintech.com/resources/freetools/slimpdfreader/ is prone to several overflows that can lead to code execution. The crash below is triggered by simply adding 50.000 random characters in the header of a pdf file...
SlimPDF Reader - Denial of Service (PoC)
Slimpdf Reader from investintech, http://www.investintech.com/resources/freetools/slimpdfreader/ is prone to several overflows that can lead to code execution. The crash below is triggered by simply adding 50.000 random characters in the header of a pdf file. Initial bug and directions to...