75 matches found
CVE-2013-1607
CVE-2013-1607 affects the Ruby PDFKit gem prior to 0.5.3. The vulnerability arises from improper input validation/handling during PDF generation, allowing potential remote code execution. Affected component: PDFKit Ruby gem; root cause: parameter handling/validation flaw; impact: remote code exec...
CVE-2013-1607
Ruby PDFKit gem prior to 0.5.3 has a Code Execution Vulnerability...
Denial Of Service (DoS) Via Infinite Loop
pdfkit is vulnerable to denial of service attacks. When a single character exceeds the width of a empty line, the line wrapper keeps adding new lines in an infinite loop, leading to an application crash...
macOS 10.13.x < 10.13.4 Multiple Vulnerabilities
Binary data 700515.prm...
Apple macOS High Sierra PDFKit Security Bypass Vulnerability
Apple macOS High Sierra is the United States Apple Apple company's set of Mac computers developed specifically for the operating system. PDFKit is one of the PDF document generation components. A security vulnerability exists in the PDFKit component in Apple macOS High Sierra versions prior to...
CVE-2018-4107
An issue was discovered in certain Apple products. macOS before 10.13.4 is affected. The issue involves the "PDFKit" component. It allows remote attackers to bypass intended restrictions on visiting URLs within a PDF document...
CVE-2018-4107
An issue was discovered in certain Apple products. macOS before 10.13.4 is affected. The issue involves the "PDFKit" component. It allows remote attackers to bypass intended restrictions on visiting URLs within a PDF document...
Design/Logic Flaw
An issue was discovered in certain Apple products. macOS before 10.13.4 is affected. The issue involves the "PDFKit" component. It allows remote attackers to bypass intended restrictions on visiting URLs within a PDF document...
CVE-2018-4107
An issue was discovered in certain Apple products. macOS before 10.13.4 is affected. The issue involves the "PDFKit" component. It allows remote attackers to bypass intended restrictions on visiting URLs within a PDF document...
CVE-2018-4107
CVE-2018-4107 affects macOS before 10.13.4, specifically the PDFKit component. The issue allows a PDF to bypass restrictions on visiting URLs contained in the document, enabling a remote attacker to direct a user to a malicious website via crafted PDF content. The vulnerability stems from parsing...
macOS 10.13.x < 10.13.4 Multiple Vulnerabilities
The remote host is running a version of macOS / Mac OS X that is 10.13.x prior to 10.13.4. It is, therefore, affected by multiple vulnerabilities in the following components : - Admin Framework - APFS - ATS - CoreFoundation - CoreText - Disk Images - Disk Management - File System Events - iCloud...
Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information
The PDFkit.framework package for the Debian GNU/Linux operating system has multiple vulnerabilities. Exploitation of these vulnerabilities may lead to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...
Apple Mac OS X 释放后重用远程代码执行漏洞
BUGTRAQ ID: 58509 CVECAN ID: CVE-2013-0971 Apple Mac OS X是苹果电脑操作系统软件。 Apple Mac OS X 10.8.3之前版本PDFKit内存在释放后重用漏洞,通过PDF文档内的特制链接注释,远程攻击者可执行任意代码或造成拒绝服务。 0 Apple Mac OS X 10.7.4 Apple Mac OS X 10.7.3 Apple Mac OS X 10.7.2 Apple Mac OS X 10.7.1 Apple Mac OS X Server 10.7.4 Apple Mac OS X Server 10.7.3...
CVE-2013-0971
Use-after-free vulnerability in PDFKit in Apple Mac OS X before 10.8.3 allows remote attackers to execute arbitrary code or cause a denial of service application crash via crafted ink annotations in a PDF document...
Design/Logic Flaw
Use-after-free vulnerability in PDFKit in Apple Mac OS X before 10.8.3 allows remote attackers to execute arbitrary code or cause a denial of service application crash via crafted ink annotations in a PDF document...
CVE-2013-0971
CVE-2013-0971 is a use-after-free vulnerability in Apple Mac OS X PDFKit prior to 10.8.3. An attacker can trigger memory corruption via crafted ink annotations in a PDF, leading to arbitrary code execution or an application crash (DoS). Public references describe the affected component as PDFKit ...
CVE-2013-0971
Use-after-free vulnerability in PDFKit in Apple Mac OS X before 10.8.3 allows remote attackers to execute arbitrary code or cause a denial of service application crash via crafted ink annotations in a PDF document...
Mac OS X 10.8.x < 10.8.3 Multiple Vulnerabilities
The remote host is running a version of Mac OS X 10.8.x that is prior to 10.8.3. The newer version contains multiple security-related fixes for the following components : - Apache - CoreTypes - International Components for Unicode - Identity Services - ImageIO - IOAcceleratorFamily - Kernel - Log...
Mac OS X Multiple Vulnerabilities (Security Update 2013-001)
The remote host is running a version of Mac OS X 10.6 or 10.7 that does not have Security Update 2013-001 applied. This update contains numerous security-related fixes for the following components : - Apache - CoreTypes 10.7 only - International Components for Unicode - Identity Services 10.7 onl...
PDFKit Gem for Ruby PDF File Generation Parameter Handling Remote Code Execution
PDFKit Gem for Ruby contains a flaw that is due to the program failing to properly validate input during the handling of parameters when generating PDF files. This may allow a remote attacker to potentially execute arbitrary code via the pdfkit generation options...