CVE-2018-7173

A large loop in JBIG2Stream::readSymbolDictSeg in xpdf 4.00 allows an attacker to cause denial of service via a specific file due to…

mitre·CWE-172·Published 2018-02-15

CVSS

—

EPSS

0.01

KEV

Exploits

cve.orgen

156 chars

A large loop in JBIG2Stream::readSymbolDictSeg in xpdf 4.00 allows an attacker to cause denial of service via a specific file due to inappropriate decoding.

NVDen

156 chars

A large loop in JBIG2Stream::readSymbolDictSeg in xpdf 4.00 allows an attacker to cause denial of service via a specific file due to inappropriate decoding.

NVDes

193 chars

Un gran bucle en JBIG2Stream::readSymbolDictSeg en xpdf 4.00 permite que un atacante provoque una denegación de servicio (DoS) mediante un archivo específico debido a un descifrado inapropiado.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:N/A:P
3.0	Primary	NVD	5.5	1.8	3.6	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H