Vulnerabilities > CVE-2018-1000038 - Out-of-bounds Write vulnerability in Artifex Mupdf

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

artifex

CWE-787

nessus

NVD

Published: 2018-05-24

Updated: 2023-11-07

Summary

In MuPDF 1.12.0 and earlier, a stack buffer overflow in function pdf_lookup_cmap_full in pdf/pdf-cmap.c could allow an attacker to execute arbitrary code via a crafted file.

Vulnerable Configurations

Part	Description	Count
Application	Artifex Artifex Mupdf 0.6 Artifex Mupdf 0.7 Artifex Mupdf 0.8 Artifex Mupdf 0.8.15 Artifex Mupdf 0.8.165 Artifex Mupdf 0.9 Artifex Mupdf 0.9.1 Artifex Mupdf 1.0 Artifex Mupdf 1.1 Artifex Mupdf 1.2 Artifex Mupdf 1.3 Artifex Mupdf 1.4 Artifex Mupdf 1.5 Artifex Mupdf 1.6 Artifex Mupdf 1.7 Artifex Mupdf 1.7.1 Artifex Mupdf 1.7A Artifex Mupdf 1.8 Artifex Mupdf 1.8.1 Artifex Mupdf 1.9 Artifex Mupdf 1.9A Artifex Mupdf 1.10 Artifex Mupdf 1.10A Artifex Mupdf 1.11 Artifex Mupdf 1.12 Artifex Mupdf 1.12.0	51

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

Nessus

NASL family	Gentoo Local Security Checks
NASL id	GENTOO_GLSA-201811-15.NASL
description	The remote host is affected by the vulnerability described in GLSA-201811-15 (MuPDF: Multiple vulnerabilities) Multiple vulnerabilities have been discovered in MuPDF. Please review the CVE identifiers referenced below for details. Impact : A remote attacker, by enticing a user to process a specially crafted file, could possibly execute arbitrary code, cause a Denial of Service condition, or have other unspecified impacts. Workaround : There is no known workaround at this time.
last seen	2020-06-01
modified	2020-06-02
plugin id	119160
published	2018-11-27
reporter	This script is Copyright (C) 2018 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/119160
title	GLSA-201811-15 : MuPDF: Multiple vulnerabilities

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Nessus

References