cnvd - cnvd-2018-19416

cnvd-2018-19416

Vulnerability from cnvd

Title: PoDoFo信息泄露漏洞

Description:

PoDoFo是一个开源的、使用C++编写的PDF文件格式的库。

PoDoFo中的‘PdfEncoding::ParseToUnicode()’函数存在信息泄露漏洞，漏洞源于程序未能正确的验证用户提交的数据，攻击者可借助恶意的页面或文件利用该漏洞泄露敏感信息。

Severity: 中

Formal description:

厂商尚未提供漏洞修复方案，请关注厂商主页更新： http://podofo.sourceforge.net/

Reference: https://zerodayinitiative.com/advisories/ZDI-18-1046

Impacted products

Name
PoDoFo PoDoFo

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-14320"
    }
  },
  "description": "PoDoFo\u662f\u4e00\u4e2a\u5f00\u6e90\u7684\u3001\u4f7f\u7528C++\u7f16\u5199\u7684PDF\u6587\u4ef6\u683c\u5f0f\u7684\u5e93\u3002\r\n\r\nPoDoFo\u4e2d\u7684\u2018PdfEncoding::ParseToUnicode()\u2019\u51fd\u6570\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff0c\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u6b63\u786e\u7684\u9a8c\u8bc1\u7528\u6237\u63d0\u4ea4\u7684\u6570\u636e\uff0c\u653b\u51fb\u8005\u53ef\u501f\u52a9\u6076\u610f\u7684\u9875\u9762\u6216\u6587\u4ef6\u5229\u7528\u8be5\u6f0f\u6d1e\u6cc4\u9732\u654f\u611f\u4fe1\u606f\u3002",
  "discovererName": "V.E.O",
  "formalWay": "\u5382\u5546\u5c1a\u672a\u63d0\u4f9b\u6f0f\u6d1e\u4fee\u590d\u65b9\u6848\uff0c\u8bf7\u5173\u6ce8\u5382\u5546\u4e3b\u9875\u66f4\u65b0\uff1a\r\nhttp://podofo.sourceforge.net/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-19416",
  "openTime": "2018-09-19",
  "products": {
    "product": "PoDoFo PoDoFo"
  },
  "referenceLink": "https://zerodayinitiative.com/advisories/ZDI-18-1046",
  "serverity": "\u4e2d",
  "submitTime": "2018-09-19",
  "title": "PoDoFo\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e"
}

CVE-2018-14320 (GCVE-0-2018-14320)

Vulnerability from cvelistv5

Published

2018-09-17 18:00

Modified

2024-08-05 09:21

Severity ?

CWE

CWE-119 - -Improper Restriction of Operations within the Bounds of a Memory Buffer

Summary

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of PoDoFo. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within PdfEncoding::ParseToUnicode. The issue results from the lack of proper validation of user-supplied data, which can result in a memory corruption condition. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. Was ZDI-CAN-5673.

References

▼	URL	Tags
	https://zerodayinitiative.com/advisories/ZDI-18-1046	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	PoDoFo	PoDoFo PoDoFo	Version: 0.9.5

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T09:21:41.646Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://zerodayinitiative.com/advisories/ZDI-18-1046"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "PoDoFo PoDoFo",
          "vendor": "PoDoFo",
          "versions": [
            {
              "status": "affected",
              "version": "0.9.5"
            }
          ]
        }
      ],
      "datePublic": "2018-09-13T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of PoDoFo. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within PdfEncoding::ParseToUnicode. The issue results from the lack of proper validation of user-supplied data, which can result in a memory corruption condition. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. Was ZDI-CAN-5673."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-119",
              "description": "CWE-119-Improper Restriction of Operations within the Bounds of a Memory Buffer",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-09-17T17:57:01",
        "orgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
        "shortName": "zdi"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://zerodayinitiative.com/advisories/ZDI-18-1046"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "zdi-disclosures@trendmicro.com",
          "ID": "CVE-2018-14320",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "PoDoFo PoDoFo",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "0.9.5"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "PoDoFo"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of PoDoFo. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within PdfEncoding::ParseToUnicode. The issue results from the lack of proper validation of user-supplied data, which can result in a memory corruption condition. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. Was ZDI-CAN-5673."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-119-Improper Restriction of Operations within the Bounds of a Memory Buffer"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://zerodayinitiative.com/advisories/ZDI-18-1046",
              "refsource": "MISC",
              "url": "https://zerodayinitiative.com/advisories/ZDI-18-1046"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
    "assignerShortName": "zdi",
    "cveId": "CVE-2018-14320",
    "datePublished": "2018-09-17T18:00:00",
    "dateReserved": "2018-07-16T00:00:00",
    "dateUpdated": "2024-08-05T09:21:41.646Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted