CVE-2012-5340 – SumatraPDF 2.1.1/MuPDF 1.0 - Integer Overflow
https://notcve.org/view.php?id=CVE-2012-5340
SumatraPDF 2.1.1/MuPDF 1.0 allows remote attackers to cause an Integer Overflow in the lex_number() function via a corrupt PDF file. SumatraPDF versión 2.1.1 y MuPDF versión 1.0, permite a atacantes remotos causar un desbordamiento de enteros en la función lex_number() por medio de un archivo PDF corrupto. • https://www.exploit-db.com/exploits/23246 http://www.exploit-db.com/exploits/23246 https://bugs.ghostscript.com/show_bug.cgi?id=693371 https://cgit.ghostscript.com/cgi-bin/cgit.cgi/mupdf.git/commit/?id=f919270b6a732ff45c3ba2d0c105e2b39e9c9bc9 • CWE-190: Integer Overflow or Wraparound •
CVE-2012-4895
https://notcve.org/view.php?id=CVE-2012-4895
Heap-based buffer overflow in SumatraPDF before 2.1 allows remote attackers to execute arbitrary code via a crafted PDF document, a different vulnerability than CVE-2012-4896. Desbordamiento de búfer basado en memoria dinámica en SumatraPDF antes de v2.1 permite a atacantes remotos ejecutar código arbitrario a través de un documento PDF modificado, una vulnerabilidad diferente a CVE-2012-4896. • http://code.google.com/p/sumatrapdf/source/browse/trunk/docs/releasenotes.txt http://secunia.com/advisories/50656 http://technet.microsoft.com/security/msvr/msvr12-014 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2012-4896
https://notcve.org/view.php?id=CVE-2012-4896
Heap-based buffer overflow in SumatraPDF before 2.1 allows remote attackers to execute arbitrary code via a crafted PDF document, a different vulnerability than CVE-2012-4895. Desbordamiento de búfer basado en memoria dinámica en SumatraPDF antes de v2.1 permite a atacantes remotos ejecutar código arbitrario a través de un documento PDF modificado, una vulnerabilidad diferente a CVE-2012-4895. • http://code.google.com/p/sumatrapdf/source/browse/trunk/docs/releasenotes.txt http://secunia.com/advisories/50656 http://technet.microsoft.com/security/msvr/msvr12-014 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •