In PoDoFo 0.9.5, there exists an infinite loop vulnerability in PdfParserObject::ParseFileComplete() in PdfParserObject.cpp which may result in stack overflow. Remote attackers could leverage this vulnerability to cause a denial-of-service or possibly unspecified other impact via a crafted pdf file.
References
Link | Resource |
---|---|
https://bugzilla.redhat.com/show_bug.cgi?id=1548930 | Issue Tracking Third Party Advisory |
https://www.exploit-db.com/exploits/44946/ | Exploit VDB Entry Third Party Advisory |
Configurations
Information
Published : 2018-03-09 11:29
Updated : 2019-10-02 17:03
NVD link : CVE-2018-8002
Mitre link : CVE-2018-8002
JSON object : View
CWE
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
Products Affected
podofo_project
- podofo