Details of VAR-201101-0473

ID

VAR-201101-0473

TITLE

MuPDF 'closedctd()' PDF File Handling Remote Code Execution Vulnerability

Trust: 0.3

sources: BID: 46027

DESCRIPTION

MuPDF is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code with the privileges of the user running the application or crash the application, denying service to legitimate users. MuPDF 0.7 is vulnerable; other versions may also be affected.

Trust: 0.3

sources: BID: 46027

AFFECTED PRODUCTS

vendor:	sumatra	model:	pdf sumatra pdf	scope:	eq	version:	0.9.3	Trust: 0.3
vendor:	sumatra	model:	pdf sumatra pdf	scope:	eq	version:	1.2	Trust: 0.3
vendor:	sumatra	model:	pdf sumatra pdf	scope:	eq	version:	1.1	Trust: 0.3
vendor:	mupdf	model:	mupdf	scope:	eq	version:	0.7	Trust: 0.3
vendor:	mupdf	model:	mupdf	scope:	eq	version:	0	Trust: 0.3
vendor:	sumatra	model:	pdf sumatra pdf	scope:	ne	version:	1.3	Trust: 0.3

sources: BID: 46027

THREAT TYPE

network

Trust: 0.3

sources: BID: 46027

TYPE

Boundary Condition Error

Trust: 0.3

sources: BID: 46027

EXTERNAL IDS

db:

BID

id:

46027

Trust: 0.3

sources: BID: 46027

REFERENCES

url:	http://ccxvii.net/fitz/	Trust: 0.3
url:	http://blog.kowalczyk.info/software/sumatrapdf/index.html	Trust: 0.3
url:	http://code.google.com/p/sumatrapdf/issues/detail?id=1180	Trust: 0.3

sources: BID: 46027

CREDITS

Shinnai

Trust: 0.3

sources: BID: 46027

SOURCES

db:

BID

id:

46027

LAST UPDATE DATE

2022-05-17T02:00:12.771000+00:00

SOURCES UPDATE DATE

db:

BID

id:

46027

date:

2011-01-26T00:00:00

SOURCES RELEASE DATE

db:

BID

id:

46027

date:

2011-01-26T00:00:00