cve/2017/CVE-2017-5853.md

CVE-2017-5853

Description

Integer overflow in base/PdfParser.cpp in PoDoFo 0.9.4 allows remote attackers to have unspecified impact via a crafted file.

POC

Reference

• https://blogs.gentoo.org/ago/2017/02/01/podofo-signed-integer-overflow-in-pdfparser-cpp/

Github

• https://github.com/mrash/afl-cve
• https://github.com/mudongliang/LinuxFlaw
• https://github.com/oneoy/cve-