📄 SumatraPDF 3.5.2 Remote Code Execution

SumatraPDF versions 3.5.0 to 3.5.2 disable TLS hostname verification during update checks using INTERNETFLAGIGNORECERTCNINVALID and do not perform any signature or integrity validation on the downloaded installer. Exploit Title: SumatraPDF 3.5.2 - Remote Code Execution Date: 2026-02-10 Exploit...

CVE-2026-25920 SumatraPDF has a heap out-of-bounds read in MOBI HuffDic decompressor

SumatraPDF is a multi-format reader for Windows. In 3.5.2 and earlier, a heap out-of-bounds read vulnerability exists in SumatraPDF's MOBI HuffDic decompressor. The bounds check in AddCdicData only validates half the range that DecodeOne actually accesses. Opening a crafted .mobi file can read...

North Korean Hackers Target Energy and Aerospace Industries with New MISTPEN Malware

A North Korea-linked cyber-espionage group has been observed leveraging job-themed phishing lures to target prospective victims in energy and aerospace verticals and infect them with a previously undocumented backdoor dubbed MISTPEN. The activity cluster is being tracked by Google-owned Mandiant...

SumatraPDF 3.5.2 DLL Hijacking

SumatraPDF 3.5.2 DLL Hijack Exploit Title: Sumatra PDF 3.5.2 DLL Hijack Date: 03.03.2024 Exploit Author: Krishna Vamshi Katta Rokkaiah Vendor Homepage: https://www.sumatrapdfreader.org/free-pdf-reader Software Link: https://www.sumatrapdfreader.org/download-free-pdf-viewer Version: 3.5.2 Tested o...

Number withdrawn

Sumatra PDF is a software application. PDF, ePub, MOBI, CHM, XPS, DjVu, CBZ, CBR readers for Windows. This CVE number has been withdrawn...

Sumatra PDF 3.5.2 DLL Hijacking

Exploit Title: Sumatra PDF 3.5.2 DLL Hijacking Date: 06.02.2024 Exploit Author: Ravishanka Silva Vendor Homepage: https://www.sumatrapdfreader.org/free-pdf-reader Software Link: https://www.sumatrapdfreader.org/download-free-pdf-viewer Version: 3.5.2 Tested on: Windows 10, Windows 11 CVE :...

Sumatra PDF 安全漏洞

Sumatra PDF is a software application. PDF, ePub, MOBI, CHM, XPS, DjVu, CBZ, CBR readers for Windows. A security vulnerability exists in Sumatra PDF Reader version v3.4.6, which originated from a vulnerability that allows an attacker to cause a denial of service DoS via a crafted text file...

PT-2023-3988 · Unknown · Sumatrapdf

Name of the Vulnerable Software and Affected Versions: SumatraPDF version 3.4.6 Description: The issue is related to a buffer overflow in the SumatraPDF Reader when handling text files, such as first.txt and second.txt, due to the lack of size checking of input data. This can be exploited by a...

ZINC weaponizing open-source software

In recent months, Microsoft has detected a wide range of social engineering campaigns using weaponized legitimate open-source software by an actor we track as ZINC. Microsoft Threat Intelligence Center MSTIC observed activity targeting employees in organizations across multiple industries includi...

ZINC weaponizing open-source software

In recent months, Microsoft has detected a wide range of social engineering campaigns using weaponized legitimate open-source software by an actor we track as ZINC. Microsoft Threat Intelligence Center MSTIC observed activity targeting employees in organizations across multiple industries includi...

SumatraPDF 2.1.1/MuPDF 1.0 Integer Overflow

No description provided by source. Sumatra 2.1.1/MuPDF 1.0 Integer Overflow ======================================= There is an integer overflow on the MuPDF in the lexnumber function which can be triggered using a corrupt PDF file with ObjStm. I'm attaching a file that reproduces the problem wit...

CVE-2012-6535

DjVuLibre before 3.5.25.3, as used in Evince, Sumatra PDF Reader, VuDroid, and other products, allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted DjVu aka .djv file...

DEBIAN-CVE-2012-6535

DjVuLibre before 3.5.25.3, as used in Evince, Sumatra PDF Reader, VuDroid, and other products, allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted DjVu aka .djv file...

Memory corruption

DjVuLibre before 3.5.25.3, as used in Evince, Sumatra PDF Reader, VuDroid, and other products, allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted DjVu aka .djv file...

CVE-2012-6535

CVE-2012-6535 affects DjVuLibre before 3.5.25.3 (used by Evince, Sumatra PDF Reader, VuDroid and others). Root cause: memory corruption during DjVu file processing; impact: remote code execution or denial of service. Public details indicate exploitation via crafted DjVu files with no user interac...

CVE-2012-6535

DjVuLibre before 3.5.25.3, as used in Evince, Sumatra PDF Reader, VuDroid, and other products, allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted DjVu aka .djv file...

CVE-2012-6535

DjVuLibre before 3.5.25.3, as used in Evince, Sumatra PDF Reader, VuDroid, and other products, allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted DjVu aka .djv file...

Sumatra 2.1.1/MuPDF 1.0 Integer Overflow

Exploit for windows platform in category dos / poc Sumatra 2.1.1/MuPDF 1.0 Integer Overflow ======================================= There is an integer overflow on the MuPDF in the lexnumber function which can be triggered using a corrupt PDF file with ObjStm. I'm attaching a file that reproduces...

SumatraPDF 2.1.1MuPDF 1.0 - Integer Overflow

SumatraPDF 2.1.1MuPDF 1.0 - Integer Overflow Sumatra 2.1.1/MuPDF 1.0 Integer Overflow ======================================= There is an integer overflow on the MuPDF in the lexnumber function which can be triggered using a corrupt PDF file with ObjStm. I'm attaching a file that reproduces the...

Sumatra PDF 1.1 - Denial of Service

source: https://www.securityfocus.com/bid/41276/info Sumatra PDF is prone to an unspecified denial-of-service vulnerability. An attacker can exploit this issue to crash the affected application, resulting in a denial-of-service condition. Sumatra PDF 1.1 is vulnerable; other versions may also be...