CVE-2018-11128
HIGHpdfparser < 0.12.0 - Stack-Based Buffer Overflow in ObjReader::ReadObj()
Title source: llmDescription
The ObjReader::ReadObj() function in ObjReader.cpp in vincent0629 PDFParser allows remote attackers to cause a denial of service (stack-based buffer overflow) or possibly execute arbitrary code via a crafted pdf file.
References (1)
Core 1
Core References
Mailing List, Third Party Advisory mailing-list
x_refsource_fulldisc
http://seclists.org/fulldisclosure/2018/May/44
Scores
CVSS v3
7.8
EPSS
0.0169
EPSS Percentile
74.5%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Details
CWE
CWE-787
Status
published
Products (1)
pdfparser/pdfparser
< 0.12.0
Published
May 17, 2018
Tracked Since
Feb 18, 2026