Denial of Service and Remote Code Execution in SlimPDF Reader by Investintech
CVE-2011-4217

Currently unrated

Key Information:

Vendor: Investintech
Status: SlimPDF Reader
Vendor: CVE Published:; 1 November 2011

🔔 Create Investintech Vulnerability Alert

What is CVE-2011-4217?

Investintech's SlimPDF Reader has a flaw in its handling of read operations during block data moves. This flaw enables attackers to exploit the application using specially crafted PDF files, potentially leading to crashes or the execution of arbitrary code. Proper safeguards are not in place to restrict access during these operations, posing a security risk to users.

References

http://www.kb.cert.org/vuls/id/275036

third-party-advisoryx_refsource_CERT-VN

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Nov 1, 2011

CVE-2011-4217 Data

JSON