Computer Security
[EN] securityvulns.ru no-pyccku


libpoppler library uninitialized pointer
updated since 09.07.2008
Published:10.07.2008
Source:
SecurityVulns ID:9139
Type:library
Threat Level:
6/10
Description:Uninitialized pointer dereference on PDF parsing.
Affected:POPPLER : poppler 0.8
CVE:CVE-2008-2950 (The Page destructor in Page.cc in libpoppler in Poppler 0.8.4 and earlier deletes a pageWidgets object even if it is not initialized by a Page constructor, which allows remote attackers to execute arbitrary code via a crafted PDF document.)
Original documentdocumentFelipe Andres Manzano, [Full-disclosure] #2008-007 libpoppler uninitialized pointer - POC (10.07.2008)
 documentAndrea Barisani, [oCERT-2008-007] libpoppler uninitialized pointer (09.07.2008)
Files:libpoppler uninitialized pointer exploit

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod