Htmldoc Project: >> Htmldoc >> 1.9.11 Security Vulnerabilities
A stack-based buffer overflow in image_load_bmp() in HTMLDOC <= 1.9.13 results in remote code execution if the victim converts an HTML document linking to a crafted BMP file.
CVSS Score
7.8
EPSS Score
0.059
Published
2022-01-10
A stack-based buffer under-read in htmldoc before 1.9.12, allows attackers to cause a denial of service via a crafted BMP image to image_load_bmp.
CVSS Score
5.5
EPSS Score
0.001
Published
2021-11-03
Integer overflow in the htmldoc 1.9.11 and before may allow attackers to execute arbitrary code and cause a denial of service that is similar to CVE-2017-9181.
CVSS Score
9.8
EPSS Score
0.005
Published
2021-04-05
Page 2