CVE-2007-6561

Sažetak

Multiple stack-based buffer overflows in PDFLib allow user-assisted remote attackers to execute arbitrary code via a long filename argument to the PDF_load_image function that results in an overflow in the pdc_fsearch_fopen function, and possibly other vectors.

Reference

http://osvdb.org/40275
http://secunia.com/advisories/28239
http://secunia.com/advisories/29304
http://security.gentoo.org/glsa/glsa-200803-17.xml
http://securityreason.com/securityalert/3495
http://www.securityfocus.com/archive/1/485479/100/0/threaded
http://www.securityfocus.com/bid/27001

CVSS

Base:	5.7
Impact:	6.9
Exploitability:	5.5

Pristup

Vektor	Složenost	Autentikacija
ADJACENT_NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	COMPLETE

CVSS vektor

AV:A/AC:M/Au:N/C:N/I:N/A:C

Zadnje važnije ažuriranje

15-10-2018 - 21:55

Objavljeno

28-12-2007 - 00:46