Vulnetix
Try Vulnetix Request Demo
CVE-2009-0756 PUBLISHED CVSS 5 MEDIUM

The JBIG2Stream::readSymbolDictSeg function in Poppler before 0.10.4 allows remote attackers to cause a denial of service (crash) via a PDF file that triggers a parsing error, which is not properly handled by JBIG2SymbolDict::~JBIG2SymbolDict and triggers an invalid memory dereference.

EPSS 13.98% · 94.3th percentile

Risk Scores

CVSS v2.0
5
EPSS Score
13.98%
94.3th percentile

Affected Products

VendorProductVersions
popplerpoppler0.10.2, 0, 0.1
n/an/an/a

Timeline

References

Open in Interactive Console →