CVE-2019-13288

Опубликовано: 04 июл. 2019

Источник: debian

EPSS Средний

Описание

In Xpdf 4.01.01, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack. This is similar to CVE-2018-16646.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
xpdf	not-affected			package

EPSS

Процентиль: 96%

0.27509

Средний

Связанные уязвимости

CVE-2019-13288

CVSS3: 5.5

ubuntu

больше 6 лет назад

In Xpdf 4.01.01, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack. This is similar to CVE-2018-16646.

CVE-2019-13288

CVSS3: 5.5

nvd

больше 6 лет назад

In Xpdf 4.01.01, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack. This is similar to CVE-2018-16646.

GHSA-prrp-xgrg-xvgp

github

больше 3 лет назад

In Xpdf 4.01.01, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack. This is similar to CVE-2018-16646.

EPSS

Процентиль: 96%

0.27509

Средний