Cisco Blog >Threat Research

Threat Research

Talos is disclosing a single off-by-one read/write vulnerability found in the TIFF image decoder functionality of PDFium as used in Google Chrome up to and including version 60.0.3112.101. Google Chrome is the most widely used web browser today and a specially crafted PDF could trigger the vulnerability resulting in memory corruption, possible information leak, and potential code execution. This issue has been fixed in Google Chrome version 62.0.3202.62.

Read_More»

Tags:

Cisco Systems Inc. published this content on 19 October 2017 and is solely responsible for the information contained herein.
Distributed by Public, unedited and unaltered, on 19 October 2017 20:56:02 UTC.

Original documenthttps://blogs.cisco.com/security/talos/google-pdfium-vulnerability

Public permalinkhttp://www.publicnow.com/view/09669474EB04EDCB73F37206E7B76C98F357DAD5