Array index error in the DCTStream::readProgressiveDataUnit method in xpdf/Stream.cc in Xpdf 3.02pl1, as used in poppler, teTeX, KDE, KOffice, CUPS, and other products, allows remote attackers to trigger memory corruption and execute arbitrary code via a crafted PDF file.
Exploitability
AV:NAC:HAu:NImpact
C:CI:CA:C7.6/AV:N/AC:H/Au:N/C:C/I:C/A:C