Note:
This project will be discontinued after December 13, 2021. [more]
2018-02-24
A NULL pointer dereference in XFAForm::scanFields in XFAForm.cc in xpdf 4.00 allows attackers to launch denial of service via a specific pdf file, as demonstrated by pdftohtml.
| Products | Xpdf |
| Type | NULL Pointer Dereference (CWE-476) |
| First patch | - None (likely due to unavailable code) |
| Links | https://forum.xpdfreader.com/viewtopic.php?f=3&t=613 |