Note:
This project will be discontinued after December 13, 2021. [more]
2018-02-24
Infinite recursion in AcroForm::scanField in AcroForm.cc in xpdf 4.00 allows attackers to launch denial of service via a specific pdf file due to lack of loop checking, as demonstrated by pdftohtml.
| Products | Xpdf |
| Type | Resource Management Errors (CWE-399) |
| First patch | - None (likely due to unavailable code) |
| Links | https://forum.xpdfreader.com/viewtopic.php?p=814#p814 |