Heap-Based Buffer Over-Read Vulnerability in Xpdf 4.01.01

Heap-Based Buffer Over-Read Vulnerability in Xpdf 4.01.01

CVE-2019-12958 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

In Xpdf 4.01.01, a heap-based buffer over-read could be triggered in FoFiType1C::convertToType0 in fofi/FoFiType1C.cc when it is trying to access the second privateDicts array element, because the privateDicts array has only one element allocated.

Learn more about our Web Application Penetration Testing UK.