CVE-2018-8002

In PoDoFo 0.9.5, there exists an infinite loop vulnerability in PdfParserObject::ParseFileComplete() in PdfParserObject.cpp which may result in stack overflow. Remote attackers could leverage this vulnerability to cause a denial-of-service or possibly unspecified other impact via a crafted pdf file.
References
Link Resource
https://bugzilla.redhat.com/show_bug.cgi?id=1548930 Issue Tracking Third Party Advisory
https://www.exploit-db.com/exploits/44946/ Exploit VDB Entry Third Party Advisory
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:podofo_project:podofo:0.9.5:*:*:*:*:*:*:*

Information

Published : 2018-03-09 11:29

Updated : 2019-10-02 17:03


NVD link : CVE-2018-8002

Mitre link : CVE-2018-8002


JSON object : View

CWE
CWE-835

Loop with Unreachable Exit Condition ('Infinite Loop')

Advertisement

dedicated server usa

Products Affected

podofo_project

  • podofo