cbcvebase.
CVE-2013-4978
published 2014-02-05

CVE-2013-4978: Stack-based buffer overflow in AloahaPDFViewer 5.0.0.7 and earlier in Aloaha PDF Suite FREE allows remote attackers to execute arbitrary code via a crafted PDF…

PriorityP351critical9.3CVSS 2.0
AVNACMAuNCCICAC
EXPLOIT
EPSS
8.17%
94.2th percentile
Stack-based buffer overflow in AloahaPDFViewer 5.0.0.7 and earlier in Aloaha PDF Suite FREE allows remote attackers to execute arbitrary code via a crafted PDF file.

Affected

1 ranges
VendorProductVersion rangeFixed in
aloahaaloahapdfviewer<= 5.0.0.7

Detection & IOCsextracted from sources · hover to see the quote

urlhttps://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/62036.zip
  • Detect exploitation attempts targeting AloahaPDFViewer via crafted PDF files triggering a stack-based buffer overflow in versions 5.0.0.7 and earlier.
  • Monitor for process crashes or unexpected code execution spawned from AloahaPDFViewer, as failed exploit attempts will likely cause denial-of-service conditions.
  • ·Vulnerability is confirmed only in AloahaPDFViewer version 5.0.0.7 and earlier; newer versions may not be affected.
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.