Vulnerability Description
Multiple stack-based buffer overflows in PDFLib allow user-assisted remote attackers to execute arbitrary code via a long filename argument to the PDF_load_image function that results in an overflow in the pdc_fsearch_fopen function, and possibly other vectors.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Pdflib | Pdflib | 7.0.2 |
Related Weaknesses (CWE)
References
- http://osvdb.org/40275
- http://secunia.com/advisories/28239Vendor Advisory
- http://secunia.com/advisories/29304
- http://security.gentoo.org/glsa/glsa-200803-17.xml
- http://securityreason.com/securityalert/3495
- http://www.securityfocus.com/archive/1/485479/100/0/threaded
- http://www.securityfocus.com/bid/27001Exploit
- http://osvdb.org/40275
- http://secunia.com/advisories/28239Vendor Advisory
- http://secunia.com/advisories/29304
- http://security.gentoo.org/glsa/glsa-200803-17.xml
- http://securityreason.com/securityalert/3495
- http://www.securityfocus.com/archive/1/485479/100/0/threaded
- http://www.securityfocus.com/bid/27001Exploit
FAQ
What is CVE-2007-6561?
CVE-2007-6561 is a vulnerability with a CVSS score of 5.7 (MEDIUM). Multiple stack-based buffer overflows in PDFLib allow user-assisted remote attackers to execute arbitrary code via a long filename argument to the PDF_load_image function that results in an overflow i...
How severe is CVE-2007-6561?
CVE-2007-6561 has been rated MEDIUM with a CVSS base score of 5.7/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-6561?
Check the references section above for vendor advisories and patch information. Affected products include: Pdflib Pdflib.