Lucene search
K

102 matches found

Prion
Prion
added 2018/05/14 12:29 a.m.15 views

Design/Logic Flaw

The DCTStream::readHuffSym function in Stream.cc in the DCT decoder in xpdf before 4.00 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via crafted JPEG data...

6.8CVSS8.1AI score0.01276EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2018/05/14 12:29 a.m.23 views

CVE-2018-11033

The DCTStream::readHuffSym function in Stream.cc in the DCT decoder in xpdf before 4.00 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via crafted JPEG data...

7.8CVSS8.1AI score0.01276EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2018/05/14 12:29 a.m.364 views

CVE-2018-11033

The DCTStream::readHuffSym function in Stream.cc in the DCT decoder in xpdf before 4.00 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via crafted JPEG data...

7.8CVSS7.2AI score0.01276EPSS
Exploits0References2
OSV
OSV
added 2018/05/14 12:29 a.m.6 views

CVE-2018-11033

The DCTStream::readHuffSym function in Stream.cc in the DCT decoder in xpdf before 4.00 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via crafted JPEG data...

7.8CVSS7.7AI score
Exploits0References1
OSV
OSV
added 2018/05/14 12:29 a.m.4 views

UBUNTU-CVE-2018-11033

The DCTStream::readHuffSym function in Stream.cc in the DCT decoder in xpdf before 4.00 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via crafted JPEG data...

7.8CVSS5.9AI score0.01276EPSS
Exploits0References3
OSV
OSV
added 2018/05/14 12:29 a.m.6 views

DEBIAN-CVE-2018-11033

The DCTStream::readHuffSym function in Stream.cc in the DCT decoder in xpdf before 4.00 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via crafted JPEG data...

7.8CVSS7.6AI score0.01276EPSS
Exploits0References1
Cvelist
Cvelist
added 2018/05/14 12:0 a.m.29 views

CVE-2018-11033

The DCTStream::readHuffSym function in Stream.cc in the DCT decoder in xpdf before 4.00 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via crafted JPEG data...

8.1AI score0.01276EPSS
Exploits0References1
CNVD
CNVD
added 2018/05/14 12:0 a.m.6 views

xpdf 'DCTStream::readHuffSym' function denial of service vulnerability

Xpdf is an open source PDF reader developed by Foo Labs , it supports decoding LZW compressed format files and read encrypted PDF files.DCT decoder is one of the DCT decoder . Xpdf 4.00 before the version of the DCT decoder in the Stream.cc file 'DCTStream::readHuffSym' function has a security...

7.8CVSS7.4AI score0.01276EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2018/05/14 12:0 a.m.48 views

CVE-2018-11033

The DCTStream::readHuffSym function in Stream.cc in the DCT decoder in xpdf before 4.00 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via crafted JPEG data...

7.8CVSS6.5AI score0.01276EPSS
Exploits0
Prion
Prion
added 2018/04/29 9:29 p.m.47 views

Design/Logic Flaw

An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. exifreaddata in ext/exif/exif.c has an out-of-bounds read for crafted JPEG data because exifiifaddvalue mishandles the case of a MakerNote that lacks a final '\0' character...

6.8CVSS8.4AI score0.07159EPSS
Exploits0References13Affected Software3
Cvelist
Cvelist
added 2018/04/29 9:0 p.m.47 views

CVE-2018-10549

An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. exifreaddata in ext/exif/exif.c has an out-of-bounds read for crafted JPEG data because exifiifaddvalue mishandles the case of a MakerNote that lacks a final '\0' character...

7.9AI score0.07159EPSS
Exploits0References13
RedhatCVE
RedhatCVE
added 2018/03/22 8:49 p.m.23 views

CVE-2017-18234

An issue was discovered in Exempi before 2.4.3. It allows remote attackers to cause a denial of service invalid memcpy with resultant use-after-free or possibly have unspecified other impact via a .pdf file containing JPEG data, related to XMPFiles/source/FormatSupport/ReconcileTIFF.cpp,...

7.8CVSS7.8AI score0.01707EPSS
Exploits1References1
CNVD
CNVD
added 2018/03/16 12:0 a.m.3 views

Exempi Denial of Service Vulnerability (CNVD-2018-06683)

Exempi is an open source implementation of XMP based on the Adobe XMP SDK. A security vulnerability exists in versions of Exempi prior to 2.4.3. A remote attacker can exploit this vulnerability to cause a denial of service memory copy invalid memory misreference with the help of a .pdf file with...

7.8CVSS6.7AI score0.01707EPSS
Exploits1References1
OSV
OSV
added 2018/03/15 7:29 p.m.7 views

CVE-2017-18234

An issue was discovered in Exempi before 2.4.3. It allows remote attackers to cause a denial of service invalid memcpy with resultant use-after-free or possibly have unspecified other impact via a .pdf file containing JPEG data, related to XMPFiles/source/FormatSupport/ReconcileTIFF.cpp,...

7.8CVSS8AI score
Exploits0References5
NVD
NVD
added 2018/03/15 7:29 p.m.13 views

CVE-2017-18234

An issue was discovered in Exempi before 2.4.3. It allows remote attackers to cause a denial of service invalid memcpy with resultant use-after-free or possibly have unspecified other impact via a .pdf file containing JPEG data, related to XMPFiles/source/FormatSupport/ReconcileTIFF.cpp,...

7.8CVSS8AI score0.01707EPSS
Exploits1References5
OSV
OSV
added 2018/03/15 7:29 p.m.2 views

DEBIAN-CVE-2017-18234

An issue was discovered in Exempi before 2.4.3. It allows remote attackers to cause a denial of service invalid memcpy with resultant use-after-free or possibly have unspecified other impact via a .pdf file containing JPEG data, related to XMPFiles/source/FormatSupport/ReconcileTIFF.cpp,...

7.8CVSS7.6AI score0.01707EPSS
Exploits1References1
Cvelist
Cvelist
added 2018/03/15 7:0 p.m.21 views

CVE-2017-18234

An issue was discovered in Exempi before 2.4.3. It allows remote attackers to cause a denial of service invalid memcpy with resultant use-after-free or possibly have unspecified other impact via a .pdf file containing JPEG data, related to XMPFiles/source/FormatSupport/ReconcileTIFF.cpp,...

8AI score0.01707EPSS
Exploits1References5
Debian CVE
Debian CVE
added 2018/03/15 7:0 p.m.18 views

CVE-2017-18234

An issue was discovered in Exempi before 2.4.3. It allows remote attackers to cause a denial of service invalid memcpy with resultant use-after-free or possibly have unspecified other impact via a .pdf file containing JPEG data, related to XMPFiles/source/FormatSupport/ReconcileTIFF.cpp,...

7.8CVSS8.1AI score0.01707EPSS
Exploits1
OSV
OSV
added 2018/03/15 12:0 a.m.5 views

UBUNTU-CVE-2017-18234

An issue was discovered in Exempi before 2.4.3. It allows remote attackers to cause a denial of service invalid memcpy with resultant use-after-free or possibly have unspecified other impact via a .pdf file containing JPEG data, related to XMPFiles/source/FormatSupport/ReconcileTIFF.cpp,...

7.8CVSS6.8AI score0.01707EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2018/03/15 12:0 a.m.22 views

CVE-2017-18234

An issue was discovered in Exempi before 2.4.3. It allows remote attackers to cause a denial of service invalid memcpy with resultant use-after-free or possibly have unspecified other impact via a .pdf file containing JPEG data, related to XMPFiles/source/FormatSupport/ReconcileTIFF.cpp,...

7.8CVSS6.8AI score0.01707EPSS
Exploits1References2
Rows per page
Query Builder