Show filters
27 Total Results
Displaying 11-20 of 27
Sort by:
Attacker Value
Unknown

CVE-2018-5296

Disclosure Date: January 08, 2018 (last updated November 26, 2024)
In PoDoFo 0.9.5, there is an uncontrolled memory allocation in the PdfParser::ReadXRefSubsection function (base/PdfParser.cpp). Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted pdf file.
0
0
Attacker Value
Unknown

CVE-2018-5295

Disclosure Date: January 08, 2018 (last updated November 26, 2024)
In PoDoFo 0.9.5, there is an integer overflow in the PdfXRefStreamParserObject::ParseStream function (base/PdfXRefStreamParserObject.cpp). Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted pdf file.
0
0
Attacker Value
Unknown

CVE-2017-8787

Disclosure Date: May 05, 2017 (last updated November 26, 2024)
The PoDoFo::PdfXRefStreamParserObject::ReadXRefStreamEntry function in base/PdfXRefStreamParserObject.cpp:224 in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (heap-based buffer over-read) or possibly have unspecified other impact via a crafted PDF file.
0
0
Attacker Value
Unknown

CVE-2017-8378

Disclosure Date: May 01, 2017 (last updated November 26, 2024)
Heap-based buffer overflow in the PdfParser::ReadObjects function in base/PdfParser.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via vectors related to m_offsets.size.
0
0
Attacker Value
Unknown

CVE-2017-8054

Disclosure Date: April 22, 2017 (last updated November 26, 2024)
The function PdfPagesTree::GetPageNodeFromArray in PdfPageTree.cpp:464 in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (infinite recursion and application crash) via a crafted PDF document.
0
0
Attacker Value
Unknown

CVE-2017-8053

Disclosure Date: April 22, 2017 (last updated November 26, 2024)
PoDoFo 0.9.5 allows denial of service (infinite recursion and stack consumption) via a crafted PDF file in PoDoFo::PdfParser::ReadDocumentStructure (PdfParser.cpp).
0
0
Attacker Value
Unknown

CVE-2017-7994

Disclosure Date: April 21, 2017 (last updated November 26, 2024)
The function TextExtractor::ExtractText in TextExtractor.cpp:77 in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PDF document.
0
0
Attacker Value
Unknown

CVE-2017-7380

Disclosure Date: April 03, 2017 (last updated November 26, 2024)
The doc/PdfPage.cpp:614:20 code in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PDF document.
0
0
Attacker Value
Unknown

CVE-2017-7382

Disclosure Date: April 03, 2017 (last updated November 26, 2024)
The PdfFontFactory.cpp:200:88 code in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PDF document.
0
0
Attacker Value
Unknown

CVE-2017-7381

Disclosure Date: April 03, 2017 (last updated November 26, 2024)
The doc/PdfPage.cpp:609:23 code in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PDF document.
0
0
View More Topics  < Previous  Next >