CVE-2012-4895
NONE
Published Oct 5, 201213y ago · Modified Jun 16, 20262w ago
Published Oct 5, 2012 13y ago
Last Modified Jun 16, 2026 2w ago
Description
Heap-based buffer overflow in SumatraPDF before 2.1 allows remote attackers to execute arbitrary code via a crafted PDF document, a different vulnerability than CVE-2012-4896.
Threat Intelligence
No active exploitation signals — not in CISA KEV and no EPSS score yet.
Exploit & Patch Status
No Known Exploit
No Patch Available
Weaknesses 1
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer Memory Safety
Affected Products 28
| Vendor | Product | Version | Range |
|---|---|---|---|
| sumatrapdfreader | sumatrapdf | * | ≤2.0.1 |
| sumatrapdfreader | sumatrapdf | 0.1 | any |
| sumatrapdfreader | sumatrapdf | 0.2 | any |
| sumatrapdfreader | sumatrapdf | 0.3 | any |
| sumatrapdfreader | sumatrapdf | 0.4 | any |
| sumatrapdfreader | sumatrapdf | 0.5 | any |
| sumatrapdfreader | sumatrapdf | 0.6 | any |
| sumatrapdfreader | sumatrapdf | 0.7 | any |
| sumatrapdfreader | sumatrapdf | 0.8 | any |
| sumatrapdfreader | sumatrapdf | 0.8.1 | any |
| sumatrapdfreader | sumatrapdf | 0.9 | any |
| sumatrapdfreader | sumatrapdf | 0.9.1 | any |
| sumatrapdfreader | sumatrapdf | 0.9.2 | any |
| sumatrapdfreader | sumatrapdf | 0.9.3 | any |
| sumatrapdfreader | sumatrapdf | 0.9.4 | any |
| sumatrapdfreader | sumatrapdf | 1.0 | any |
| sumatrapdfreader | sumatrapdf | 1.0.1 | any |
| sumatrapdfreader | sumatrapdf | 1.1 | any |
| sumatrapdfreader | sumatrapdf | 1.2 | any |
| sumatrapdfreader | sumatrapdf | 1.3 | any |
| sumatrapdfreader | sumatrapdf | 1.4 | any |
| sumatrapdfreader | sumatrapdf | 1.5 | any |
| sumatrapdfreader | sumatrapdf | 1.5.1 | any |
| sumatrapdfreader | sumatrapdf | 1.6 | any |
| sumatrapdfreader | sumatrapdf | 1.7 | any |
| sumatrapdfreader | sumatrapdf | 1.8 | any |
| sumatrapdfreader | sumatrapdf | 1.9 | any |
| sumatrapdfreader | sumatrapdf | 2.0 | any |
References 3
- code.google.com http://code.google.com/p/sumatrapdf/source/browse/trunk/docs/releasenotes.txt
- secunia.com http://secunia.com/advisories/50656
- technet.microsoft.com http://technet.microsoft.com/security/msvr/msvr12-014
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.