Computer Security

libpoppler library uninitialized pointer
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



libpoppler library uninitialized pointer
updated since 09.07.2008
Published:10.07.2008
Source:BUGTRAQ
SecurityVulns ID:9139
Type:library
Level:6/10
Description:Uninitialized pointer dereference on PDF parsing.
Affected:POPPLER : Poppler 0.8
CVE:CVE-2008-2950 (The Page destructor in Page.cc in libpoppler in Poppler 0.8.4 and earlier deletes a pageWidgets object even if it is not initialized by a Page constructor, which allows remote attackers to execute arbitrary code via a crafted PDF document.)
Original documentdocumentFelipe Andres Manzano, [Full-disclosure] #2008-007 libpoppler uninitialized pointer - POC (10.07.2008)
 documentAndrea Barisani, [oCERT-2008-007] libpoppler uninitialized pointer (09.07.2008)
Files:libpoppler uninitialized pointer exploit
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
 


Рейтинг@Mail.ru