漏洞标题
N/A
漏洞描述信息
在 Iceni Argus 中存在可攻击的堆栈缓冲区溢出。当该工具试图将包含不完整字体的 PDF 转换为 XML 时,它将尝试使用字体中超出的字符数来搜索一个链表缓冲区以返回。由于签名问题,将返回一个小于请求大小的缓冲区。后来,当工具试图填充这个缓冲区时,溢出将发生,这可能导致用户在运行工具上下文中的代码执行。
CVSS信息
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
An exploitable heap-based buffer overflow exists in Iceni Argus. When it attempts to convert a PDF containing a malformed font to XML, the tool will attempt to use a size out of the font to search through a linked list of buffers to return. Due to a signedness issue, a buffer smaller than the requested size will be returned. Later when the tool tries to populate this buffer, the overflow will occur which can lead to code execution under the context of the user running the tool.
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
Iceni Argus 缓冲区错误漏洞
漏洞描述信息
Iceni Argus是英国Iceni公司的一套PDF文档类型转换工具。 Iceni Argus中存在基于堆的缓冲区溢出漏洞。攻击者可利用该漏洞执行代码。
CVSS信息
N/A
漏洞类别
缓冲区错误