Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability in the JPEG image parsing module in DaView Indy, DaVa+, DaOffice softwares could allow an unauthenticated, remote attacker to cause an arbitrary code execution on an affected device.nThe vulnerability is due to a stack overflow read. An attacker could exploit this vulnerability by sending a crafted PDF file to an affected device.
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Vulnerability Type
N/A
Vulnerability Title
DaView Indy、DaVa+和DaOffice 缓冲区错误漏洞
Vulnerability Description
DaView Indy是一款文档和图像查看器。 DaView Indy、DaVa+和DaOffice中的JPEG图像解析模块中存在安全漏洞。远程攻击者可借助特制的PDF文件利用该漏洞在受影响的设备上执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A