Memory Management Flaw in Poppler Product by Vendor
CVE-2008-2950

Currently unrated

Key Information:

Vendor

Poppler

Status
Poppler
Vendor
CVE Published:
7 July 2008

What is CVE-2008-2950?

The Page destructor in the Page.cc file of libpoppler prior to version 0.8.5 is prone to a memory management issue that affects the deletion of pageWidgets objects. If these objects are not properly initialized by the Page constructor, attackers can exploit this vulnerability by crafting malicious PDF documents, leading to potential arbitrary code execution when unsuspecting users open the files.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://wiki.rpath.com/Advisories:rPSA-2008-0223
x_refsource_CONFIRM
http://www.securityfocus.com/archive/1/494142/100/0/threaded
mailing-listx_refsource_BUGTRAQ
https://www.exploit-db.com/exploits/6032
exploitx_refsource_EXPLOIT-DB

EPSS Score

12% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.