Описание
Use-after-free vulnerability in the pdf_load_xref function in pdf/pdf-xref.c in MuPDF allows remote attackers to cause a denial of service (crash) via a crafted PDF file.
Ссылки
- ExploitPatch
- Third Party Advisory
- Exploit
- Third Party Advisory
- ExploitPatch
- Third Party Advisory
- Exploit
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.9 (включая)
cpe:2.3:a:artifex:mupdf:*:*:*:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*
EPSS
Процентиль: 65%
0.00498
Низкий
5.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-416
Связанные уязвимости
CVSS3: 5.5
ubuntu
больше 9 лет назад
Use-after-free vulnerability in the pdf_load_xref function in pdf/pdf-xref.c in MuPDF allows remote attackers to cause a denial of service (crash) via a crafted PDF file.
CVSS3: 5.5
debian
больше 9 лет назад
Use-after-free vulnerability in the pdf_load_xref function in pdf/pdf- ...
CVSS3: 5.5
github
больше 3 лет назад
Use-after-free vulnerability in the pdf_load_xref function in pdf/pdf-xref.c in MuPDF allows remote attackers to cause a denial of service (crash) via a crafted PDF file.
EPSS
Процентиль: 65%
0.00498
Низкий
5.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-416