Vulnerabilities > CVE-2018-8100 - Out-of-bounds Write vulnerability in Xpdfreader Xpdf 4.00
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
The JPXStream::readTilePart function in JPXStream.cc in xpdf 4.00 allows attackers to launch denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a specific pdf file, as demonstrated by pdftohtml.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |