Computer Security
[EN] securityvulns.ru no-pyccku


poppler security vulnerabilities
Published:26.11.2013
Source:
SecurityVulns ID:13428
Type:library
Threat Level:
6/10
Description:Buffer overflow, format string vulnerability.
Affected:POPPLER : poppler 0.24
CVE:CVE-2013-4474 (Format string vulnerability in the extractPages function in utils/pdfseparate.cc in poppler before 024.2 allows remote attackers to cause a denial of service (crash) via format string specifiers in a destination filename.)
 CVE-2013-4473 (Stack-based buffer overflow in the extractPages function in utils/pdfseparate.cc in poppler before 0.24.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a source filename.)
Original documentdocumentMANDRIVA, [ MDVSA-2013:272 ] poppler (26.11.2013)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod