Page 2 of 72 results (0.001 seconds)

CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1

In Xpdf 4.04 (and earlier), a bad color space object in the input PDF file can cause a divide-by-zero. • https://forum.xpdfreader.com/viewtopic.php?t=42505 • CWE-369: Divide By Zero •

CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1

Buffer Overflow vulnerability found in XPDF v.4.04 allows an attacker to cause a Denial of Service via the PDFDoc malloc in the pdftotext.cc function. NOTE: Vendor states “it's an expected abort on out-of-memory error.” • https://gist.github.com/huanglei3/10e2a9bd07a109995b20ade306612a34 https://github.com/huanglei3/xpdf_aborted • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •

CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1

Stack overflow vulnerability in function gmalloc in goo/gmem.cc in xpdf 4.04, allows local attackers to cause a denial of service. • https://forum.xpdfreader.com/viewtopic.php?t=42361 • CWE-787: Out-of-bounds Write •

CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1

Stack overflow vulnerability in function Dict::find in xpdf/Dict.cc in xpdf 4.04, allows local attackers to cause a denial of service. • https://forum.xpdfreader.com/viewtopic.php?t=42361 • CWE-787: Out-of-bounds Write •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1

Buffer Overflow vulnerability in pdfimages in xpdf 4.03 allows attackers to crash the application via crafted command. • https://forum.xpdfreader.com/viewtopic.php?f=3&t=42160 • CWE-787: Out-of-bounds Write •