Xpdf is a free PDF reader that supports multiple operating systems. Xpdf version 4.03 has a denial of service vulnerability that stems from the presence of a null pointer dereference in the XFAScanner::scanNode() function in XFAScanner.cc. An attacker could exploit this vulnerability to cause a denial of service.