Lucene search
K

8 matches found

Veracode
Veracode
added 2024/04/11 2:59 a.m.20 views

Denial Of Service (DoS)

Xpdf is vulnerable to Denial of Service DoS. The vulnerability is due to the TextLine class mishandling characters with large y coordinates, potentially leading to a Denial of Service DoS or other unspecified impacts...

7.8CVSS7.5AI score0.01599EPSS
Exploits1References3Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 3:25 a.m.3 views

SUSE CVE-2022-30524

There is an invalid memory access in the TextLine class in TextOutputDev.cc in Xpdf 4.0.4 because the text extractor mishandles characters at large y coordinates. It can be triggered by for example sending a crafted pdf file to the pdftotext binary, which allows a remote attacker to cause a Denia...

7.8CVSS8.1AI score0.01599EPSS
Exploits1References5
NVD
NVD
added 2022/05/09 6:15 p.m.19 views

CVE-2022-30524

There is an invalid memory access in the TextLine class in TextOutputDev.cc in Xpdf 4.0.4 because the text extractor mishandles characters at large y coordinates. It can be triggered by for example sending a crafted pdf file to the pdftotext binary, which allows a remote attacker to cause a Denia...

7.8CVSS0.01599EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2022/05/09 6:15 p.m.40 views

CVE-2022-30524

There is an invalid memory access in the TextLine class in TextOutputDev.cc in Xpdf 4.0.4 because the text extractor mishandles characters at large y coordinates. It can be triggered by for example sending a crafted pdf file to the pdftotext binary, which allows a remote attacker to cause a Denia...

7.8CVSS6.8AI score0.01599EPSS
Exploits1References2
AlpineLinux
AlpineLinux
added 2022/05/09 6:0 p.m.18 views

CVE-2022-30524

There is an invalid memory access in the TextLine class in TextOutputDev.cc in Xpdf 4.0.4 because the text extractor mishandles characters at large y coordinates. It can be triggered by for example sending a crafted pdf file to the pdftotext binary, which allows a remote attacker to cause a Denia...

7.8CVSS6.2AI score0.01599EPSS
Exploits1
Debian CVE
Debian CVE
added 2022/05/09 6:0 p.m.52 views

CVE-2022-30524

There is an invalid memory access in the TextLine class in TextOutputDev.cc in Xpdf 4.0.4 because the text extractor mishandles characters at large y coordinates. It can be triggered by for example sending a crafted pdf file to the pdftotext binary, which allows a remote attacker to cause a Denia...

7.8CVSS6.5AI score0.01599EPSS
Exploits1
OSV
OSV
added 2017/02/28 6:59 p.m.26 views

CVE-2017-5884

gtk-vnc before 0.7.0 does not properly check boundaries of subrectangle-containing tiles, which allows remote servers to execute arbitrary code via the src x, y coordinates in a crafted 1 rre, 2 hextile, or 3 copyrect tile...

7.8CVSS7.6AI score
Exploits0References7
Debian CVE
Debian CVE
added 2017/02/28 6:0 p.m.32 views

CVE-2017-5884

gtk-vnc before 0.7.0 does not properly check boundaries of subrectangle-containing tiles, which allows remote servers to execute arbitrary code via the src x, y coordinates in a crafted 1 rre, 2 hextile, or 3 copyrect tile...

7.8CVSS9AI score0.02238EPSS
Exploits1
Rows per page
Query Builder