Vulnerabilities > CVE-2019-13289 - Use After Free vulnerability in Glyphandcog Xpdfreader 4.01.01
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
In Xpdf 4.01.01, there is a use-after-free vulnerability in the function JBIG2Stream::close() located at JBIG2Stream.cc. It can, for example, be triggered by sending a crafted PDF document to the pdftoppm tool.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |