CVE-2017-5095

 

Published at: - 27-10-2017 07:29

Last modified: - 08-04-2022 12:55

Total changes: - 5

Description

Stack overflow in PDFium in Google Chrome prior to 60.0.3112.78 for Linux, Windows, and Mac allowed a remote attacker to potentially exploit stack corruption via a crafted PDF file.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

 

Verification logic

 

Reference

• https://crbug.com/732661
• https://chromereleases.googleblog.com/2017/07/stable-channel-update-for-desktop.html
• GLSA-201709-15-Third Party Advisory
• 99950-Third Party Advisory, VDB Entry
• DSA-3926-Third Party Advisory
• RHSA-2017:1833-Third Party Advisory

 

Keywords

NVD

 

CVE-2017-5095

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures