PDFium in Google Chrome prior to 57.0.2987.98 for Windows could be made to increment off the end of a buffer, which allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.
References
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 03:26
Type | Values Removed | Values Added |
---|---|---|
References | () http://rhn.redhat.com/errata/RHSA-2017-0499.html - | |
References | () http://www.debian.org/security/2017/dsa-3810 - | |
References | () http://www.securityfocus.com/bid/96767 - | |
References | () https://chromereleases.googleblog.com/2017/03/stable-channel-update-for-desktop.html - | |
References | () https://crbug.com/668724 - | |
References | () https://security.gentoo.org/glsa/201704-02 - |
07 Nov 2023, 02:48
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.debian.org/security/2017/dsa-3810 - | |
References | () http://www.securityfocus.com/bid/96767 - | |
References | () https://security.gentoo.org/glsa/201704-02 - | |
References | () https://crbug.com/668724 - | |
References | () http://rhn.redhat.com/errata/RHSA-2017-0499.html - | |
References | () https://chromereleases.googleblog.com/2017/03/stable-channel-update-for-desktop.html - |
Information
Published : 2017-04-24 23:59
Updated : 2024-11-21 03:26
NVD link : CVE-2017-5032
Mitre link : CVE-2017-5032
CVE.ORG link : CVE-2017-5032
JSON object : View
Products Affected
- chrome
microsoft
- windows
CWE
CWE-787
Out-of-bounds Write