← back
CVE-2022-27135

CVE-2022-27135

EPSS 1.0%
xpdf 4.03 has heap buffer overflow in the function readXRefTable located in XRef.cc. An attacker can exploit this bug to cause a Denial of Service (Segmentation fault) or other unspecified effects by sending a crafted PDF file to the pdftoppm binary.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://forum.xpdfreader.com/viewtopic.php?f=3&t=42232https://github.com/verf1sh/Poc/blob/master/pic_ppm.pnghttps://github.com/verf1sh/Poc/blob/master/poc_ppm