FILE-PDF -- Snort has detected suspicious traffic related to a PDF file. PDFs are easily exploitable. They include many ways to encapsulate data and are often targeted by attackers, who use the PDF's household name status for social engineering. Therefore, Snort includes Many PDF-targeted rules.
FILE-PDF Poppler PDF library embedded jp2 COD levels integer overflow attempt
This event is generated when jp2 COD levels in a PDF are detected triggering an integer overflow in Poppler PDF. Impact: Attempted Administrator Privilege Gain Details: Ease of Attack:
No information provided
No public information
No known false positives
Cisco Talos Intelligence Group
No rule groups
CVE-2017-2820 |
Loading description
|