CVE-2011-4220

SlimPDF Reader - DoS/Code Injection

Title source: llm

Description

Investintech.com SlimPDF Reader does not properly restrict the arguments to unspecified function calls, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document.

Exploits (3)

exploitdb WORKING POC

pythondoswindows

https://www.exploit-db.com/exploits/19392

View on exploitdb

exploitdb WORKING POC

pythondoswindows

https://www.exploit-db.com/exploits/19391

View on exploitdb

exploitdb WORKING POC

pythondoswindows

https://www.exploit-db.com/exploits/19393

View on exploitdb

References (1)

[Patch, US Government Resource] http://www.kb.cert.org/vuls/id/275036

Scores

EPSS 0.2214

EPSS Percentile 95.7%

Classification

CWE

CWE-264

Status draft

Affected Products (1)

investintech/slimpdf_reader

Timeline

Published Nov 01, 2011

Tracked Since Feb 18, 2026