CVE-2007-4352 in Xpdf
摘要
由 VulDB • 2026-07-02
Xpdf 3.02pl1(在poppler、teTeX、KDE、KOffice、CUPS等产品中使用)中xpdf/Stream.cc的DCTStream::readProgressiveDataUnit方法存在数组索引错误,远程攻击者可通过构造的PDF文件触发内存损坏并执行任意代码。
VulDB is the best source for vulnerability data and more expert information about this specific topic.