Lucene search
K

5 matches found

Talos Blog
Talos Blog
added 2020/09/14 12:16 p.m.55 views

Vulnerability Spotlight: Memory corruption in Google PDFium

Aleksandar Nikolic of Cisco Talos discovered these vulnerabilities. Blog by Jon Munshaw. Google Chrome's PDFium feature could be exploited by an adversary to corrupt memory and potentially execute remote code. Chrome is a popular, free web browser available on all operating systems. PDFium allows...

2.8AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2018/10/07 12:0 a.m.4 views

Google PDFium Out-of-bounds read (CVE-2018-16076)

An out-of-bounds and vulnerability exists in Google PDFium. The vulnerability is due to an error in parsing a malformed JBIG2 image stream in a PDF document. Successful exploitation could result in sensitive data exposure and memory corruption...

6.8CVSS3AI score0.01469EPSS
Exploits0
Talos Blog
Talos Blog
added 2018/10/03 7:38 a.m.45 views

Vulnerability Spotlight: Google PDFium JBIG2 Image ComposeToOpt2WithRect Information Disclosure Vulnerability

Discovered by Aleksandar Nikolic of Cisco Talos Overview Cisco Talos is releasing details of a new vulnerability in Google PDFium's JBIG2 library. An exploitable out-of-bounds read on the heap vulnerability exists in the JBIG2-parsing code in Google Chrome, version 67.0.3396.99. A specially craft...

0.4AI score0.01469EPSS
Exploits0
CNVD
CNVD
added 2017/10/30 12:0 a.m.4 views

Google PDFium TIFF Image Flate Decoder Code Execution Vulnerability

Google PDFium is Google in the BSD 3-Clause license under the open source , based on Foxit technology , embedded in Google Chrome's PDF rendering engine . Google PDFium TIFF Image Flate decoder there are code execution vulnerabilities, attackers can exploit the vulnerabilities lead to memory...

8.8CVSS7.6AI score0.01999EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2016/02/10 12:0 a.m.57 views

Google Chrome < 48.0.2564.109 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 48.0.2564.109. It is, therefore, affected by multiple vulnerabilities as referenced in the 201602stable-channel-update9 advisory. - The Developer Tools aka DevTools subsystem in Google Chrome before 48.0.2564.109 does n...

8.8CVSS7.8AI score0.01883EPSS
Exploits1References14
Rows per page
Query Builder