Vulnerability Details CVE-2012-4895
Heap-based buffer overflow in SumatraPDF before 2.1 allows remote attackers to execute arbitrary code via a crafted PDF document, a different vulnerability than CVE-2012-4896.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.105
EPSS Ranking 92.9%
CVSS Severity
CVSS v2 Score 9.3
References
- http://code.google.com/p/sumatrapdf/source/browse/trunk/docs/releasenotes.txt
- http://secunia.com/advisories/50656
- http://technet.microsoft.com/security/msvr/msvr12-014
- http://code.google.com/p/sumatrapdf/source/browse/trunk/docs/releasenotes.txt
- http://secunia.com/advisories/50656
- http://technet.microsoft.com/security/msvr/msvr12-014
Products affected by CVE-2012-4895
-
cpe:2.3:a:sumatrapdfreader:sumatrapdf:0.1
-
cpe:2.3:a:sumatrapdfreader:sumatrapdf:0.2
-
cpe:2.3:a:sumatrapdfreader:sumatrapdf:0.3
-
cpe:2.3:a:sumatrapdfreader:sumatrapdf:0.4
-
cpe:2.3:a:sumatrapdfreader:sumatrapdf:0.5
-
cpe:2.3:a:sumatrapdfreader:sumatrapdf:0.6
-
cpe:2.3:a:sumatrapdfreader:sumatrapdf:0.7
-
cpe:2.3:a:sumatrapdfreader:sumatrapdf:0.8
-
cpe:2.3:a:sumatrapdfreader:sumatrapdf:0.8.1
-
cpe:2.3:a:sumatrapdfreader:sumatrapdf:0.9
-
cpe:2.3:a:sumatrapdfreader:sumatrapdf:0.9.1
-
cpe:2.3:a:sumatrapdfreader:sumatrapdf:0.9.2
-
cpe:2.3:a:sumatrapdfreader:sumatrapdf:0.9.3
-
cpe:2.3:a:sumatrapdfreader:sumatrapdf:0.9.4
-
cpe:2.3:a:sumatrapdfreader:sumatrapdf:1.0
-
cpe:2.3:a:sumatrapdfreader:sumatrapdf:1.0.1
-
cpe:2.3:a:sumatrapdfreader:sumatrapdf:1.1
-
cpe:2.3:a:sumatrapdfreader:sumatrapdf:1.2
-
cpe:2.3:a:sumatrapdfreader:sumatrapdf:1.3
-
cpe:2.3:a:sumatrapdfreader:sumatrapdf:1.4
-
cpe:2.3:a:sumatrapdfreader:sumatrapdf:1.5
-
cpe:2.3:a:sumatrapdfreader:sumatrapdf:1.5.1
-
cpe:2.3:a:sumatrapdfreader:sumatrapdf:1.6
-
cpe:2.3:a:sumatrapdfreader:sumatrapdf:1.7
-
cpe:2.3:a:sumatrapdfreader:sumatrapdf:1.8
-
cpe:2.3:a:sumatrapdfreader:sumatrapdf:1.9
-
cpe:2.3:a:sumatrapdfreader:sumatrapdf:2.0
-
cpe:2.3:a:sumatrapdfreader:sumatrapdf:2.0.1