HTMLDOC v1.9.18 contains a buffer overflow in parse_pre function,ps-pdf.cxx:5681.
The vulnerability (CWE-120) consists of a buffer overflow in the parse_pre function during HTML document processing. An attacker can provide a specially crafted HTML file that causes data to be written outside the boundaries of the allocated buffer in memory. The lack of proper validation of input data size before the copy operation to the buffer enables overwriting adjacent memory areas.
Successful exploitation of this vulnerability may lead to arbitrary code execution (RCE) in the context of the document processing process, as well as breach of confidentiality, integrity, and availability of the system. An attacker without any privileges can take control of the vulnerable application.
A patch available in the project repository should be applied (commit 683bec548e642cf4a17e003fb34f6bbaf2d27b98 on GitHub) or HTMLDOC should be updated to a version containing the fix according to vendor information.
HTMLDOC version 1.9.18 (Htmldoc Project / michaelrsweet/htmldoc).
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HHtmldoc Project Htmldoc
APPHtmldoc Project1.9.18
Related vulnerabilities
HTMLDOC: out-of-bounds write w parse_paragraph podczas przetwarzania HTML
A flaw was found in htmldoc in v1.9.12. Double-free in function pspdf_export(),in ps-pdf.cxx may result in a w...
A flaw was found in htmldoc before v1.9.12. Heap buffer overflow in pspdf_prepare_outpages(), in ps-pdf.cxx ma...
Integer overflow in the htmldoc 1.9.11 and before may allow attackers to execute arbitrary code and cause a de...
A flaw was discovered in htmodoc 1.9.12 in function parse_paragraph in ps-pdf.cxx ,this flaw possibly allows p...