Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xpdfreader xpdf 4.04 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-3436
Xpdf 4.04 will deadlock on a PDF object stream whose "Length" field is itself in another object stream.
Xpdfreader Xpdf 4.04
NA
CVE-2022-43071
A stack overflow in the Catalog::readPageLabelTree2(Object*) function of XPDF v4.04 allows malicious users to cause a Denial of Service (DoS) via a crafted PDF file.
Xpdfreader Xpdf 4.04
NA
CVE-2022-43295
XPDF v4.04 exists to contain a stack overflow via the function FileStream::copy() at xpdf/Stream.cc:795.
Xpdfreader Xpdf 4.04
NA
CVE-2023-26930
Buffer Overflow vulnerability found in XPDF v.4.04 allows an malicious user to cause a Denial of Service via the PDFDoc malloc in the pdftotext.cc function. NOTE: Vendor states “it's an expected abort on out-of-memory error.”
Xpdfreader Xpdf 4.04
605
VMScore
CVE-2022-33108
XPDF v4.04 exists to contain a stack overflow vulnerability via the Object::Copy class of object.cc files.
Xpdfreader Xpdf 4.04
NA
CVE-2022-38928
XPDF 4.04 is vulnerable to Null Pointer Dereference in FoFiType1C.cc:2393.
Xpdfreader Xpdf 4.04
NA
CVE-2022-45586
Stack overflow vulnerability in function Dict::find in xpdf/Dict.cc in xpdf 4.04, allows local malicious users to cause a denial of service.
Xpdfreader Xpdf 4.04
NA
CVE-2022-45587
Stack overflow vulnerability in function gmalloc in goo/gmem.cc in xpdf 4.04, allows local malicious users to cause a denial of service.
Xpdfreader Xpdf 4.04
NA
CVE-2022-41842
An issue exists in Xpdf 4.04. There is a crash in gfseek(_IO_FILE*, long, int) in goo/gfile.cc.
Xpdfreader Xpdf 4.04
NA
CVE-2022-41843
An issue exists in Xpdf 4.04. There is a crash in convertToType0 in fofi/FoFiType1C.cc, a different vulnerability than CVE-2022-38928.
Xpdfreader Xpdf 4.04
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
firewall
CVE-2024-35649
stored XSS
CVE-2022-28654
CVE-2020-35153
CVE-2024-27348
CVE-2022-28652
local users
CVE-2017-3506
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »