VYPR
High severity7.8NVD Advisory· Published May 14, 2018· Updated Jun 17, 2026

CVE-2018-11033

CVE-2018-11033

Description

The DCTStream::readHuffSym function in Stream.cc in the DCT decoder in xpdf before 4.00 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via crafted JPEG data.

Affected products

2
  • Xpdf/Xpdfinferred2 versions
    <4.00+ 1 more
    • (no CPE)range: <4.00
    • (no CPE)range: <4.00

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.