Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2014-2013Improper Restriction of Operations within the Bounds of a Memory Buffer in Mupdf

CWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-862Missing AuthorizationCWE-362Race ConditionCWE-200Sensitive Information Exposure46 documents11 sources
Severity
7.5HIGHNVD
OSV5.0
EPSS
34.5%
top 3.00%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
Artifex MupdfEglibc
Timeline
PublishedMar 3
Latest updateMay 14

Description

Stack-based buffer overflow in the xps_parse_color function in xps/xps-common.c in MuPDF 1.3 and earlier allows remote attackers to execute arbitrary code via a large number of entries in the ContextColor value of the Fill attribute in a Path element.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages3 packages

Debianartifex/mupdf< 1.3-2+3
NVDartifex/mupdf1.3+3
Ubuntueglibc/eglibc< 2.19-0ubuntu6.6

🔴Vulnerability Details

4
GHSA
GHSA-q5j7-qx45-7g2c: Stack-based buffer overflow in the xps_parse_color function in xps/xps-common2022-05-14
OSV
eglibc, glibc vulnerabilities2015-02-26
OSV
CVE-2014-2013: Stack-based buffer overflow in the xps_parse_color function in xps/xps-common2014-03-03
CVEList
CVE-2014-2013: Stack-based buffer overflow in the xps_parse_color function in xps/xps-common2014-03-03

💥Exploits & PoCs

5
Exploit-DB
Elipse E3 - HTTP Denial of Service2014-11-26
Exploit-DB
ManageEngine EventLog Analyzer - Multiple Vulnerabilities (1)2014-09-01
Exploit-DB
VTLS Virtua InfoStation.cgi - SQL Injection2014-08-26
Exploit-DB
SpagoBI 4.0 - Persistent HTML Script Insertion2014-03-03
Exploit-DB
MuPDF 1.3 - 'xps_parse_color()' Stack Buffer Overflow2014-01-20

📋Vendor Advisories

6
Red Hat
openstack-heat: authenticated information leak in Heat2014-04-23
Red Hat
openstack-nova: RBAC policy not properly enforced in Nova EC2 API2014-04-09
Red Hat
polkit-qt: insecure calling of polkit2014-03-24
Red Hat
php: multiple vulnerabilities in gdImageCrop()2014-02-06
BSD
FreeBSD-SA-14:03.openssl: OpenSSL multiple vulnerabilities2014-01-14

💬Community

9
Bugzilla
CVE-2013-6235 jamonapi: multiple reflected XSS vulnerabilities2014-01-24
Bugzilla
CVE-2013-6478 pidgin: DoS when rendering long URLs2014-01-23
Bugzilla
CVE-2014-2013 mupdf: stack-based buffer overflow in xps_parse_color()2014-01-22
Bugzilla
CVE-2013-5904 Oracle JDK: unspecified vulnerability fixed in 7u51 (Deployment)2014-01-15
Bugzilla
CVE-2013-7284 perl-PlRPC: pre-auth remote code execution2014-01-09
CVE-2014-2013 — Artifex Mupdf vulnerability | cvebase