Published: 09/02/2018 Updated: 14/03/2019

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 606

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Artifex Mupdf version 1.12.0 contains a Use After Free vulnerability in fz_keep_key_storable that can result in DOS / Possible code execution. This attack appear to be exploitable via Victim opens a specially crafted PDF.

Vulnerable Product	Search on Vulmon	Subscribe to Product
artifex mupdf 1.12.0
debian debian linux 9.0
debian debian linux 8.0

Debian Bug report logs - #891245 CVE-2018-6544 / CVE-2018-1000051 Package: mupdf; Maintainer for mupdf is Kan-Ru Chen (陳侃如) <koster@debianorg>; Source for mupdf is src:mupdf (PTS, buildd, popcon) Reported by: Moritz Muehlenhoff <jmm@debianorg> Date: Fri, 23 Feb 2018 18:39:01 UTC Severity: grave Tags: securit ...

Artifex Mupdf version 1120 contains a use-after-free vulnerability in fz_keep_key_storable that can result in DOS / Possible code execution This attack appear to be exploitable via Victim opens a specially crafted PDF ...

CWE-416 https://bugs.ghostscript.com/show_bug.cgi?id=698873 https://bugs.ghostscript.com/show_bug.cgi?id=698825 https://www.debian.org/security/2018/dsa-4152 https://security.gentoo.org/glsa/201811-15 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891245 https://nvd.nist.gov https://security.archlinux.org/CVE-2018-1000051

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2018-1000051

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect