CVE-2016-8388

Summary

An exploitable arbitrary heap-overwrite vulnerability exists within Iceni Argus. When it attempts to convert a malformed PDF to XML, it will explicitly trust an index within the specific font object and use it to write the font's name to a single object within an array of objects.

Affected Software

VendorProductVersion RangeStatus
IceniArgus6.6.04 (Sep 7 2012) NKaffected

Weaknesses

  • Heap Overwrite

ADP Enrichment

CVE Program Container

Additional References

References