- Home
- CVEs with nessus.description==The version of Poppler installed on the remote host is prior to 0.56.0. It is, therefore, affected by multiple vulnerabilities :
- A stack-based overflow condition exists in the getColor() function in GfxState.cc due to improper validation of user-supplied input. An unauthenticated, remote attacker can exploit this, by convincing a user to open a specially crafted PDF document, to crash the process, resulting in a denial of service condition.
(CVE-2017-9775)
- An integer overflow condition exists in the combine() function in JBIG2Stream.cc due to improper validation of user-supplied input. An unauthenticated, remote attacker can exploit this, by convincing a user to open a specially crafted PDF document, to cause a denial of service condition or the execution of arbitrary code.
(CVE-2017-9775)
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top