CVE-2012-5006

Caminova DjVu Browser Plug-in <6.1.4.27993 - Buffer Overflow

Title source: llm
STIX 2.1

Description

Heap-based buffer overflow in npdjvu.dll in Caminova DjVu Browser Plug-in 6.1.4 Build 27351 and other versions before 6.1.4.27993 allows remote attackers to execute arbitrary code via a crafted Sjbz chunk in a djvu file.

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/51675
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/46091
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/78526

Scores

EPSS 0.0427
EPSS Percentile 89.9%

Details

CWE
CWE-119
Status published
Products (1)
caminova/djvu_browser_plug-in < 6.1.4
Published Sep 19, 2012
Tracked Since Feb 18, 2026