Vulnerabilities > Podofo Project > Podofo > 0.9.5

DATE CVE VULNERABILITY TITLE RISK
2017-04-03 CVE-2017-7380 NULL Pointer Dereference vulnerability in Podofo Project Podofo 0.9.5
The doc/PdfPage.cpp:614:20 code in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PDF document.
local
low complexity
podofo-project CWE-476
5.5
5.5
2017-04-03 CVE-2017-7379 Out-of-bounds Read vulnerability in Podofo Project Podofo 0.9.5
The PoDoFo::PdfSimpleEncoding::ConvertToEncoding function in PdfEncoding.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted PDF document.
local
low complexity
podofo-project CWE-125
5.5
5.5
2017-04-03 CVE-2017-7378 Out-of-bounds Read vulnerability in Podofo Project Podofo 0.9.5
The PoDoFo::PdfPainter::ExpandTabs function in PdfPainter.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted PDF document.
local
low complexity
podofo-project CWE-125
5.5
5.5
2017-03-15 CVE-2017-6848 NULL Pointer Dereference vulnerability in Podofo Project Podofo 0.9.5
The PoDoFo::PdfXObject::PdfXObject function in PdfXObject.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
local
low complexity
podofo-project CWE-476
5.5
5.5
2017-03-15 CVE-2017-6842 NULL Pointer Dereference vulnerability in Podofo Project Podofo 0.9.5
The ColorChanger::GetColorFromStack function in colorchanger.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
local
low complexity
podofo-project CWE-476
5.5
5.5
2017-03-15 CVE-2017-6841 NULL Pointer Dereference vulnerability in Podofo Project Podofo 0.9.5
The GraphicsStack::TGraphicsStackElement::~TGraphicsStackElement function in graphicsstack.h in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
local
low complexity
podofo-project CWE-476
5.5
5.5
2017-03-15 CVE-2017-6840 Out-of-bounds Read vulnerability in Podofo Project Podofo 0.9.5
The ColorChanger::GetColorFromStack function in colorchanger.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (invalid read) via a crafted file.
local
low complexity
podofo-project CWE-125
5.5
5.5