ID CVE-2018-7175
Summary An issue was discovered in xpdf 4.00. A NULL pointer dereference in readCodestream allows an attacker to cause denial of service via a JPX image with zero components.
References
Vulnerable Configurations
  • cpe:2.3:a:xpdfreader:xpdf:4.00:*:*:*:*:*:*:*
    cpe:2.3:a:xpdfreader:xpdf:4.00:*:*:*:*:*:*:*
CVSS
Base: 4.3 (as of 06-03-2018 - 15:12)
Impact:
Exploitability:
CWE CWE-476
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:N/AC:M/Au:N/C:N/I:N/A:P
refmap via4
misc https://forum.xpdfreader.com/viewtopic.php?f=3&t=613
Last major update 06-03-2018 - 15:12
Published 15-02-2018 - 21:29
Last modified 06-03-2018 - 15:12
Back to Top