Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
384
VMScore

CVE-2018-6192

Published: 24/01/2018 Updated: 28/06/2019
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8
VMScore: 384
Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Subscribe to Mupdf

Vulnerability Summary

In Artifex MuPDF 1.12.0, the pdf_read_new_xref function in pdf/pdf-xref.c allows remote malicious users to cause a denial of service (segmentation violation and application crash) via a crafted pdf file.

Vulnerable Product Search on Vulmon Subscribe to Product

artifex mupdf 1.12.0

debian debian linux 9.0

Vendor Advisories

Debian Security Advisories: DSA-4334-1 mupdf -- security update
Multiple vulnerabilities were discovered in MuPDF, a PDF, XPS, and e-book viewer which could result in denial of service or the execution of arbitrary code if malformed documents are opened For the stable distribution (stretch), these problems have been fixed in version 19a+ds1-4+deb9u4 We recommend that you upgrade your mupdf packages For the ...
Debian CVElist Bug Report Logs: mupdf: CVE-2018-5686
Debian Bug report logs - #887130 mupdf: CVE-2018-5686 Package: src:mupdf; Maintainer for src:mupdf is Kan-Ru Chen (陳侃如) <koster@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 14 Jan 2018 10:21:02 UTC Severity: important Tags: security, upstream Found in version mupdf/15-1 Fixed ...
Debian CVElist Bug Report Logs: mupdf: CVE-2018-6187: heap-based buffer overflow in pdf/pdf-write.c:do_pdf_save_document()
Debian Bug report logs - #888464 mupdf: CVE-2018-6187: heap-based buffer overflow in pdf/pdf-writec:do_pdf_save_document() Package: src:mupdf; Maintainer for src:mupdf is Kan-Ru Chen (陳侃如) <koster@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 25 Jan 2018 23:21:01 UTC Severity: i ...
Debian CVElist Bug Report Logs: mupdf: CVE-2018-6192
Debian Bug report logs - #888487 mupdf: CVE-2018-6192 Package: src:mupdf; Maintainer for src:mupdf is Kan-Ru Chen (陳侃如) <koster@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Fri, 26 Jan 2018 10:03:01 UTC Severity: important Tags: security, upstream Found in version mupdf/111+ds1-2 F ...
Arch Linux Issues:
In Artifex MuPDF 1120, the pdf_read_new_xref function in pdf/pdf-xrefc allows remote attackers to cause a denial of service (segmentation violation and application crash) via a crafted pdf file ...

References

CWE-119https://bugs.ghostscript.com/show_bug.cgi?id=698916http://www.securityfocus.com/bid/102822https://www.debian.org/security/2018/dsa-4334https://security.gentoo.org/glsa/201811-15https://lists.debian.org/debian-lts-announce/2019/06/msg00027.htmlhttps://nvd.nist.govhttps://www.debian.org/security/./dsa-4334
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionCVE-2006-4304CVE-2023-26603CVE-2024-28327CVE-2023-50363CVE-2024-21905template injectionCVE-2024-3400cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook