Vulnerabilities > Podofo Project > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2017-03-15 | CVE-2017-6848 | NULL Pointer Dereference vulnerability in Podofo Project Podofo 0.9.5 The PoDoFo::PdfXObject::PdfXObject function in PdfXObject.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file. | 5.5 |
2017-03-15 | CVE-2017-6847 | NULL Pointer Dereference vulnerability in Podofo Project Podofo 0.9.4 The PoDoFo::PdfVariant::DelayedLoad function in PdfVariant.h in PoDoFo 0.9.4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file. | 5.5 |
2017-03-15 | CVE-2017-6846 | NULL Pointer Dereference vulnerability in Podofo Project Podofo 0.9.4 The GraphicsStack::TGraphicsStackElement::SetNonStrokingColorSpace function in graphicsstack.h in PoDoFo 0.9.4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file. | 5.5 |
2017-03-15 | CVE-2017-6845 | NULL Pointer Dereference vulnerability in Podofo Project Podofo 0.9.4 The PoDoFo::PdfColor::operator function in PdfColor.cpp in PoDoFo 0.9.4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file. | 5.5 |
2017-03-15 | CVE-2017-6842 | NULL Pointer Dereference vulnerability in Podofo Project Podofo 0.9.5 The ColorChanger::GetColorFromStack function in colorchanger.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file. | 5.5 |
2017-03-15 | CVE-2017-6841 | NULL Pointer Dereference vulnerability in Podofo Project Podofo 0.9.5 The GraphicsStack::TGraphicsStackElement::~TGraphicsStackElement function in graphicsstack.h in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file. | 5.5 |
2017-03-15 | CVE-2017-6840 | Out-of-bounds Read vulnerability in Podofo Project Podofo 0.9.5 The ColorChanger::GetColorFromStack function in colorchanger.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (invalid read) via a crafted file. | 5.5 |
2017-03-01 | CVE-2017-5855 | NULL Pointer Dereference vulnerability in Podofo Project Podofo 0.9.4 The PoDoFo::PdfParser::ReadXRefSubsection function in PdfParser.cpp in PoDoFo 0.9.4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file. | 5.5 |
2017-03-01 | CVE-2017-5854 | NULL Pointer Dereference vulnerability in Podofo Project Podofo 0.9.4 base/PdfOutputStream.cpp in PoDoFo 0.9.4 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted file. | 5.5 |
2017-03-01 | CVE-2017-5852 | Infinite Loop vulnerability in Podofo Project Podofo 0.9.4 The PoDoFo::PdfPage::GetInheritedKeyFromObject function in base/PdfVariant.cpp in PoDoFo 0.9.4 allows remote attackers to cause a denial of service (infinite loop) via a crafted file. | 5.5 |