ID
VAR-201102-0400
TITLE
MuPDF Multiple Integer Overflow Vulnerabilities
Trust: 0.3
sources:
BID: 46543
DESCRIPTION
MuPDF is prone to multiple integer-overflow vulnerabilities because it fails to properly validate user-supplied input. Successful exploits may allow attackers to execute arbitrary code in the context of applications that use the affected library. Failed exploit attempts will likely result in denial-of-service conditions. MuPDF 0.7 is vulnerable; other versions may also be affected.
Trust: 0.3
sources:
BID: 46543
AFFECTED PRODUCTS
| vendor: | sumatra | model: | pdf sumatra pdf | scope: | eq | version: | 0.9.3 | Trust: 0.3 |
| vendor: | sumatra | model: | pdf sumatra pdf | scope: | eq | version: | 1.2 | Trust: 0.3 |
| vendor: | sumatra | model: | pdf sumatra pdf | scope: | eq | version: | 1.1 | Trust: 0.3 |
| vendor: | mupdf | model: | mupdf | scope: | eq | version: | 0.7 | Trust: 0.3 |
| vendor: | mupdf | model: | mupdf | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | sumatra | model: | pdf sumatra pdf | scope: | ne | version: | 1.3 | Trust: 0.3 |
sources:
BID: 46543
THREAT TYPE
network
Trust: 0.3
sources:
BID: 46543
TYPE
Input Validation Error
Trust: 0.3
sources:
BID: 46543
EXTERNAL IDS
| db: | BID | id: | 46543 | Trust: 0.3 |
sources:
BID: 46543
REFERENCES
| url: | http://www.mupdf.com/ | Trust: 0.3 |
| url: | http://www.secunia.com/secunia_research/2011-12/ | Trust: 0.3 |
| url: | http://www.secunia.com/secunia_research/2011-13/ | Trust: 0.3 |
| url: | http://blog.kowalczyk.info/software/sumatrapdf/free-pdf-reader.html | Trust: 0.3 |
sources:
BID: 46543
CREDITS
Stefan Cornelius of Secunia Research
Trust: 0.3
sources:
BID: 46543
SOURCES
| db: | BID | id: | 46543 |
LAST UPDATE DATE
2022-05-17T01:41:37.308000+00:00
SOURCES UPDATE DATE
| db: | BID | id: | 46543 | date: | 2011-02-24T00:00:00 |
SOURCES RELEASE DATE
| db: | BID | id: | 46543 | date: | 2011-02-24T00:00:00 |