CVE-2018-6462

Tracker PDF-XChange Viewer and Viewer AX SDK before 2.5.322.8 mishandle conversion from YCC to RGB colour spaces by calculating on the basis of 1 bpc instead of 8 bpc, which might allow remote attackers to execute arbitrary code via a crafted PDF document.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:tracker-software:viewer_ax_sdk:*:*:*:*:*:*:*:*
cpe:2.3:a:tracker-software:pdf-xchange_viewer:*:*:*:*:*:*:*:*

Information

Published : 2018-01-31 10:29

Updated : 2019-10-02 17:03


NVD link : CVE-2018-6462

Mitre link : CVE-2018-6462


JSON object : View

CWE
CWE-787

Out-of-bounds Write

Advertisement

dedicated server usa

Products Affected

tracker-software

  • pdf-xchange_viewer
  • viewer_ax_sdk