Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In Xpdf 4.01.01, a buffer over-read could be triggered in FoFiType1C::convertToType1 in fofi/FoFiType1C.cc when the index number is larger than the charset array bounds. It can, for example, be triggered by sending a crafted PDF document to the pdftops tool. It allows an attacker to use a crafted pdf file to cause Denial of Service or an information leak, or possibly have unspecified other impact.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
FOO Xpdf 输入验证错误漏洞
Vulnerability Description
Xpdf是FOO实验室的一款开源的PDF阅读器。该产品支持解码LZW压缩格式的文件以及阅读加密的PDF文件。 Xpdf 4.01.01版本中的fofi/FoFiType1C.cc文件的FoFiType1C::convertToType1存在输入验证错误漏洞。攻击者可借助特制的PDF文档利用该漏洞造成拒绝服务,泄露信息或造成其他危害。
CVSS Information
N/A
Vulnerability Type
N/A