Vulnerabilities > CVE-2017-8053 - Infinite Loop vulnerability in Podofo Project Podofo 0.9.5

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
podofo-project
CWE-835
NVD
Published: 2017-04-22
Updated: 2019-10-03

Summary

PoDoFo 0.9.5 allows denial of service (infinite recursion and stack consumption) via a crafted PDF file in PoDoFo::PdfParser::ReadDocumentStructure (PdfParser.cpp).

Vulnerable Configurations

Part Description Count
Application
Podofo_Project
1

Common Weakness Enumeration (CWE)

References