NULL Pointer Dereference Vulnerability in PdfTranslator::setTarget() Function of PoDoFo 0.9.6

NULL Pointer Dereference Vulnerability in PdfTranslator::setTarget() Function of PoDoFo 0.9.6

CVE-2018-19532 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

A NULL pointer dereference vulnerability exists in the function PdfTranslator::setTarget() in pdftranslator.cpp of PoDoFo 0.9.6, while creating the PdfXObject, as demonstrated by podofoimpose. It allows an attacker to cause Denial of Service.

Learn more about our Web Application Penetration Testing UK.