漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
An exploitable heap out of bounds write vulnerability exists in the Fitz graphical library part of the MuPDF renderer. A specially crafted PDF file can cause a out of bounds write resulting in heap metadata and sensitive process memory corruption leading to potential code execution. Victim needs to open the specially crafted file in a vulnerable reader in order to trigger this vulnerability.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Artifex MuPDF 缓冲区错误漏洞
Vulnerability Description
Artifex MuPDF是美国Artifex Software公司的一款免费的、轻量级的PDF阅读器。 Artifex MuPDF 1.10-rc1版本中的Fitz graphical库存在越界写入漏洞,该漏洞源于程序没有充分的对用户提交的输入执行边界检测。攻击者可借助特制的文件利用该漏洞在应用程序上下文中执行任意代码或造成拒绝服务(堆元数据和敏感的进程内存损坏)。
CVSS Information
N/A
Vulnerability Type
N/A