CVE-2019-13288
In Xpdf 4.01.01, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote at
In Xpdf 4.01.01, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack. This is similar to CVE-2018-16646.
MEDIUM · CVSS 5.5
EPSS 0.31539
Schedule remediation
- EPSS ≥ 0.10 - elevated exploitation probability
- EPSS percentile: top 3% of all CVEs by exploitation likelihood
- Public exploit or PoC is available
Sigma rules0
YARA rules0