Heap-Based Buffer Overflow in SumatraPDF by Krzysztof Kowalczyk
CVE-2012-4895

Currently unrated

Key Information:

Vendor

SumatraPDFreader

Status
SumatraPDF
Vendor
CVE Published:
5 October 2012

What is CVE-2012-4895?

A heap-based buffer overflow vulnerability exists in SumatraPDF versions prior to 2.1. This flaw allows remote attackers to craft malicious PDF documents that may lead to arbitrary code execution on the affected system when opened. The issue arises from insufficient validation of input data, allowing an attacker to manipulate the heap memory and execute unauthorized commands.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://secunia.com/advisories/50656
third-party-advisoryx_refsource_SECUNIA
http://code.google.com/p/sumatrapdf/source/browse/trunk/d...
x_refsource_CONFIRM
http://technet.microsoft.com/security/msvr/msvr12-014
x_refsource_MISC

EPSS Score

8% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.