Use-after-free vulnerabilities in PDFium's Document.cpp can lead to denial of service or other unspecified impacts

Use-after-free vulnerabilities in PDFium's Document.cpp can lead to denial of service or other unspecified impacts

CVE-2015-1282 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Multiple use-after-free vulnerabilities in fpdfsdk/src/javascript/Document.cpp in PDFium, as used in Google Chrome before 44.0.2403.89, allow remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted PDF document, related to the (1) Document::delay and (2) Document::DoFieldDelay functions.

Learn more about our Cis Benchmark Audit For Google Chrome.