A flaw was discovered in htmodoc 1.9.12 in function parse_paragraph in ps-pdf.cxx ,this flaw possibly allows possible code execution and a denial of service via a crafted file.
oryginał ENCVSS Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HHtmldoc Project Htmldoc
APPHtmldoc Project1.9.12
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
RCEDoS
CWE
Powiązane podatności
CVE-2024-46478CRITICAL9.8PL ✓ten sam produkt
Buffer overflow w HTMLDOC v1.9.18 — funkcja parse_pre
CVE-2024-45508CRITICAL9.8PL ✓ten sam produkt
HTMLDOC: out-of-bounds write w parse_paragraph podczas przetwarzania HTML
CVE-2021-23158CRITICAL9.8ten sam produkt
A flaw was found in htmldoc in v1.9.12. Double-free in function pspdf_export(),in ps-pdf.cxx may result in a w...
CVE-2021-23165CRITICAL9.8ten sam produkt
A flaw was found in htmldoc before v1.9.12. Heap buffer overflow in pspdf_prepare_outpages(), in ps-pdf.cxx ma...
CVE-2021-20308CRITICAL9.8ten sam produkt
Integer overflow in the htmldoc 1.9.11 and before may allow attackers to execute arbitrary code and cause a de...