CVE-2012-4895

NONE
Published Oct 5, 201213y ago · Modified Jun 16, 20262w ago
Find Similar
Published Oct 5, 2012 13y ago
Last Modified Jun 16, 2026 2w ago

Description

Heap-based buffer overflow in SumatraPDF before 2.1 allows remote attackers to execute arbitrary code via a crafted PDF document, a different vulnerability than CVE-2012-4896.

Threat Intelligence

No active exploitation signals — not in CISA KEV and no EPSS score yet.

Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer Memory Safety

Affected Products 28

VendorProductVersionRange
sumatrapdfreadersumatrapdf* ≤2.0.1
sumatrapdfreadersumatrapdf0.1any
sumatrapdfreadersumatrapdf0.2any
sumatrapdfreadersumatrapdf0.3any
sumatrapdfreadersumatrapdf0.4any
sumatrapdfreadersumatrapdf0.5any
sumatrapdfreadersumatrapdf0.6any
sumatrapdfreadersumatrapdf0.7any
sumatrapdfreadersumatrapdf0.8any
sumatrapdfreadersumatrapdf0.8.1any
sumatrapdfreadersumatrapdf0.9any
sumatrapdfreadersumatrapdf0.9.1any
sumatrapdfreadersumatrapdf0.9.2any
sumatrapdfreadersumatrapdf0.9.3any
sumatrapdfreadersumatrapdf0.9.4any
sumatrapdfreadersumatrapdf1.0any
sumatrapdfreadersumatrapdf1.0.1any
sumatrapdfreadersumatrapdf1.1any
sumatrapdfreadersumatrapdf1.2any
sumatrapdfreadersumatrapdf1.3any
sumatrapdfreadersumatrapdf1.4any
sumatrapdfreadersumatrapdf1.5any
sumatrapdfreadersumatrapdf1.5.1any
sumatrapdfreadersumatrapdf1.6any
sumatrapdfreadersumatrapdf1.7any
sumatrapdfreadersumatrapdf1.8any
sumatrapdfreadersumatrapdf1.9any
sumatrapdfreadersumatrapdf2.0any

References 3

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.