Stack-based Buffer Overflow in MuPDF Used in SumatraPDF
CVE-2009-4117

Currently unrated

Key Information:

Vendor

SumatraPDFreader

Status
SumatraPDF
Vendor
CVE Published:
1 December 2009

What is CVE-2009-4117?

Multiple stack-based buffer overflows exist in the pdf_shade4.c file within MuPDF, which is utilized in SumatraPDF. These vulnerabilities arise from inadequate handling of certain shading types in the pdf_loadtype4shade, pdf_loadtype5shade, pdf_loadtype6shade, and pdf_loadtype7shade functions. Exploiting these flaws may enable remote attackers to trigger a denial of service and potentially execute arbitrary code.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://secunia.com/advisories/37494
third-party-advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/54441
vdb-entry
http://secunia.com/advisories/37513
third-party-advisory

EPSS Score

25% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.