LizardTech DjVu Browser Plug-in Multiple Buffer Overflow Vulnerabilities

LizardTech DjVu Browser Plug-in Multiple Buffer Overflow Vulnerabilities

DjVu Browser Plug-in is prone to multiple buffer-overflow vulnerabilities because it fails to sufficiently bounds-check user-supplied data.

Exploiting these issues may allow an attacker to execute arbitrary code with the privileges of the user running the application.

DjVu Browser Plug-in versions prior to 6.1.1 are vulnerable.