Lucene search
+L

285 matches found

Prion
Prion
added 2016/06/16 1:59 a.m.15 views

Information disclosure

Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows 10 1511, and Microsoft Edge allow remote attackers to obtain sensitive information from process memory via a crafted PDF document, aka "Windows PDF Information Disclosure Vulnerability," a different vulnerability than CVE-2016-3201...

4.3CVSS5.8AI score0.33569EPSS
Exploits0References4Affected Software2
NVD
NVD
added 2016/06/05 11:59 p.m.16 views

CVE-2016-1686

The CPDFDIBSource::CreateDecoder function in core/fpdfapi/fpdfrender/fpdfrenderloadimage.cpp in PDFium, as used in Google Chrome before 51.0.2704.63, mishandles decoder-initialization failure, which allows remote attackers to cause a denial of service out-of-bounds read via a crafted PDF document...

6.5CVSS6.7AI score0.0128EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2016/06/05 11:59 p.m.19 views

CVE-2016-1686

The CPDFDIBSource::CreateDecoder function in core/fpdfapi/fpdfrender/fpdfrenderloadimage.cpp in PDFium, as used in Google Chrome before 51.0.2704.63, mishandles decoder-initialization failure, which allows remote attackers to cause a denial of service out-of-bounds read via a crafted PDF document...

6.5CVSS7AI score0.0128EPSS
Exploits0References2
Cvelist
Cvelist
added 2016/06/05 11:0 p.m.25 views

CVE-2016-1685

core/fxge/ge/fxgetext.cpp in PDFium, as used in Google Chrome before 51.0.2704.63, miscalculates certain index values, which allows remote attackers to cause a denial of service out-of-bounds read via a crafted PDF document...

6.7AI score0.0128EPSS
Exploits0References11
RedHat Linux
RedHat Linux
added 2016/06/01 10:50 a.m.4 views

chromium-browser: out-of-bounds read in pdfium

core/fxge/ge/fxgetext.cpp in PDFium, as used in Google Chrome before 51.0.2704.63, miscalculates certain index values, which allows remote attackers to cause a denial of service out-of-bounds read via a crafted PDF document...

6.5CVSS7.4AI score0.0128EPSS
Exploits0References5
Cvelist
Cvelist
added 2016/05/06 5:0 p.m.22 views

CVE-2015-8868

Heap-based buffer overflow in the ExponentialFunction::ExponentialFunction function in Poppler before 0.40.0 allows remote attackers to cause a denial of service memory corruption and crash or possibly execute arbitrary code via an invalid blend mode in the ExtGState dictionary in a crafted PDF...

8.3AI score0.04557EPSS
Exploits0References13
BDU FSTEC
BDU FSTEC
added 2016/04/06 12:0 a.m.4 views

Vulnerabilities of iOS and Mac OS X operating systems, allowing attackers to trigger service interruptions or execute arbitrary code

The vulnerability of the FontParser component in iOS and Mac OS X operating systems arises due to buffer overflow. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or cause a service failure memory corruption by using a specially crafted PDF document...

9.3CVSS8.4AI score0.03958EPSS
Exploits0References9Affected Software2
Prion
Prion
added 2016/03/09 11:59 a.m.21 views

Remote code execution

The PDF library in Microsoft Windows 10 Gold and 1511 allows remote attackers to execute arbitrary code via a crafted PDF document, aka "Windows Remote Code Execution Vulnerability."...

9.3CVSS8.5AI score0.33713EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2016/02/14 2:59 a.m.8 views

CVE-2016-1626

The opjpiupdatedecodepoc function in pi.c in OpenJPEG, as used in PDFium in Google Chrome before 48.0.2564.109, miscalculates a certain layer index value, which allows remote attackers to cause a denial of service out-of-bounds read via a crafted PDF document...

4.3CVSS5.5AI score
Exploits0References12
Prion
Prion
added 2016/02/14 2:59 a.m.25 views

Out-of-bounds

The opjpiupdatedecodepoc function in pi.c in OpenJPEG, as used in PDFium in Google Chrome before 48.0.2564.109, miscalculates a certain layer index value, which allows remote attackers to cause a denial of service out-of-bounds read via a crafted PDF document...

4.3CVSS6.5AI score0.01341EPSS
Exploits0References12Affected Software3
CNVD
CNVD
added 2016/02/11 12:0 a.m.6 views

Microsoft Windows Buffer Overflow Vulnerability

Microsoft Windows is a series of operating systems designed for personal computer and server users from the American company Microsoft. Microsoft Windows 8.1,Windows Server 2012 Gold R2,Windows 10 There is a buffer overflow vulnerability that allows a remote attacker to execute arbitrary code by...

9.3CVSS8.1AI score0.22619EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2016/01/27 11:26 a.m.19 views

chromium-browser: use-after-free in PDFium

Multiple use-after-free vulnerabilities in the formfiller implementation in PDFium, as used in Google Chrome before 48.0.2564.82, allow remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted PDF document, related to improper tracking of the destructi...

7.6CVSS7.5AI score0.01092EPSS
Exploits0References5
NVD
NVD
added 2016/01/25 11:59 a.m.17 views

CVE-2016-1619

Multiple integer overflows in the 1 sycc422torgb and 2 sycc444torgb functions in fxcodec/codec/fxcodecjpxopj.cpp in PDFium, as used in Google Chrome before 48.0.2564.82, allow remote attackers to cause a denial of service out-of-bounds read or possibly have unspecified other impact via a crafted...

7.6CVSS8.2AI score0.01114EPSS
Exploits0References11
Prion
Prion
added 2016/01/25 11:59 a.m.12 views

Integer overflow

Multiple integer overflows in the 1 sycc422torgb and 2 sycc444torgb functions in fxcodec/codec/fxcodecjpxopj.cpp in PDFium, as used in Google Chrome before 48.0.2564.82, allow remote attackers to cause a denial of service out-of-bounds read or possibly have unspecified other impact via a crafted...

6.8CVSS7.5AI score0.01114EPSS
Exploits0References11Affected Software1
Prion
Prion
added 2016/01/25 11:59 a.m.30 views

Design/Logic Flaw

Multiple use-after-free vulnerabilities in the formfiller implementation in PDFium, as used in Google Chrome before 48.0.2564.82, allow remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted PDF document, related to improper tracking of the destructi...

6.8CVSS7.8AI score0.01092EPSS
Exploits0References12Affected Software1
UbuntuCve
UbuntuCve
added 2016/01/25 11:59 a.m.30 views

CVE-2016-1613

Multiple use-after-free vulnerabilities in the formfiller implementation in PDFium, as used in Google Chrome before 48.0.2564.82, allow remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted PDF document, related to improper tracking of the destructi...

7.6CVSS7.1AI score0.01092EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2016/01/25 11:0 a.m.58 views

CVE-2016-1613

Removed by vendor...

7.6CVSS8.7AI score0.01092EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2015/12/31 12:0 a.m.27 views

CVE-2015-8868

Heap-based buffer overflow in the ExponentialFunction::ExponentialFunction function in Poppler before 0.40.0 allows remote attackers to cause a denial of service memory corruption and crash or possibly execute arbitrary code via an invalid blend mode in the ExtGState dictionary in a crafted PDF...

9.3CVSS7.5AI score0.04557EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2015/12/31 12:0 a.m.23 views

Foxit Reader Arbitrary Code Execution Vulnerability

Foxit Reader is prone to an arbitrary code execution vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

6.8CVSS7.3AI score0.03691EPSS
Exploits0References1
Cvelist
Cvelist
added 2015/12/16 9:0 p.m.40 views

CVE-2015-8580

Multiple use-after-free vulnerabilities in the 1 Print method and 2 App object handling in Foxit Reader before 7.2.2 and Foxit PhantomPDF before 7.2.2 allow remote attackers to execute arbitrary code via a crafted PDF document...

7.6AI score0.03691EPSS
Exploits0References3
Rows per page
Query Builder