High severity7.8NVD Advisory· Published Jan 22, 2018· Updated Jun 17, 2026
CVE-2017-17858
CVE-2017-17858
Description
Heap-based buffer overflow in the ensure_solid_xref function in pdf/pdf-xref.c in Artifex MuPDF 1.12.0 allows a remote attacker to potentially execute arbitrary code via a crafted PDF file, because xref subsection object numbers are unrestricted.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
4- github.com/mzet-/Security-Advisories/blob/master/mzet-adv-2017-01.mdnvdExploitPatchThird Party Advisory
- bugs.ghostscript.com/show_bug.cginvdPermissions Required
- git.ghostscript.comnvd
- security.gentoo.org/glsa/201811-15nvd
News mentions
0No linked articles in our index yet.