CVE-2016-8728 in MuPDFinfo

Summary

An exploitable heap out of bounds write vulnerability exists in the Fitz graphical library part of the MuPDF renderer. A specially crafted PDF file can cause a out of bounds write resulting in heap metadata and sensitive process memory corruption leading to potential code execution. Victim needs to open the specially crafted file in a vulnerable reader in order to trigger this vulnerability.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Responsible

Talos

Reservation

10/17/2016

Disclosure

04/24/2018

Moderation

VulDB entry created

Entries

VDB-117000 (1)

CPE

ready

CWE

CWE-787 (Confirmed)

CVSS

7.6

EPSS

0.00586

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-8728
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-8728
CVE Details	https://www.cvedetails.com/cve/CVE-2016-8728/

◂ Previous Overview Next ▸

Interested in the pricing of exploits?

See the underground prices here!