VYPR

htmldoc

by michaelrsweet

CVEs (8)

  • CVE-2021-43579HigJan 10, 2022
    risk 0.04cvss 7.8epss 0.07

    A stack-based buffer overflow in image_load_bmp() in HTMLDOC <= 1.9.13 results in remote code execution if the victim converts an HTML document linking to a crafted BMP file.

  • CVE-2024-46478CriOct 24, 2024
    risk 0.00cvss 9.8epss 0.01

    HTMLDOC v1.9.18 contains a buffer overflow in parse_pre function,ps-pdf.cxx:5681.

  • CVE-2021-34119HigJul 18, 2023
    risk 0.00cvss 7.8epss 0.00

    A flaw was discovered in htmodoc 1.9.12 in function parse_paragraph in ps-pdf.cxx ,this flaw possibly allows possible code execution and a denial of service via a crafted file.

  • CVE-2022-0137HigNov 14, 2022
    risk 0.00cvss 7.5epss 0.01

    A heap buffer overflow in image_set_mask function of HTMLDOC before 1.9.15 allows an attacker to write outside the buffer boundaries.

  • CVE-2022-34035HigJul 18, 2022
    risk 0.00cvss 7.5epss 0.01

    HTMLDoc v1.9.12 and below was discovered to contain a heap overflow via e_node htmldoc/htmldoc/html.cxx:588.

  • CVE-2022-34033HigJul 18, 2022
    risk 0.00cvss 7.5epss 0.01

    HTMLDoc v1.9.15 was discovered to contain a heap overflow via (write_header) /htmldoc/htmldoc/html.cxx:273.

  • CVE-2021-26259HigMar 3, 2022
    risk 0.00cvss 7.8epss 0.01

    A flaw was found in htmldoc in v1.9.12. Heap buffer overflow in render_table_row(),in ps-pdf.cxx may lead to arbitrary code execution and denial of service.

  • CVE-2021-40985MedNov 3, 2021
    risk 0.00cvss 5.5epss 0.01

    A stack-based buffer under-read in htmldoc before 1.9.12, allows attackers to cause a denial of service via a crafted BMP image to image_load_bmp.