CVE-2017-5886

CVE-2017-5886

EPSS 1.7%

Heap-based buffer overflow in the PoDoFo::PdfTokenizer::GetNextToken function in PdfTokenizer.cpp in PoDoFo 0.9.4 allows remote attackers to have unspecified impact via a crafted file.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://blogs.gentoo.org/ago/2017/02/03/podofo-heap-based-buffer-overflow-in-podofopdftokenizergetnexttoken-pdftokenizer-cpp/http://www.securityfocus.com/bid/96512