[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248149

 
 

909

 
 

194803

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2009-3604Date: (C)2009-10-21   (M)2024-01-04


The Splash::drawImage function in Splash.cc in Xpdf 2.x and 3.x before 3.02pl4, and Poppler 0.x, as used in GPdf and kdegraphics KPDF, does not properly allocate memory, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document that triggers a NULL pointer dereference or a heap-based buffer overflow.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 9.3
Exploit Score: 8.6
Impact Score: 10.0
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
SUNALERT-1021706
SECTRACK-1023029
SUNALERT-274030
BID-36703
SECUNIA-37023
SECUNIA-37028
SECUNIA-37037
SECUNIA-37042
SECUNIA-37043
SECUNIA-37053
SECUNIA-37077
SECUNIA-37079
SECUNIA-37114
SECUNIA-37159
SECUNIA-39327
SECUNIA-39938
ADV-2009-2924
ADV-2009-2928
ADV-2010-0802
ADV-2010-1040
ADV-2010-1220
DSA-2028
DSA-2050
FEDORA-2009-10823
FEDORA-2009-10845
FEDORA-2010-1377
FEDORA-2010-1805
FEDORA-2010-1842
MDVSA-2009:287
MDVSA-2010:087
MDVSA-2011:175
RHSA-2009:1500
RHSA-2009:1501
RHSA-2009:1502
RHSA-2009:1503
RHSA-2009:1512
SUSE-SR:2009:018
USN-850-1
USN-850-3
ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.02pl4.patch
http://cgit.freedesktop.org/poppler/poppler/commit/?id=9cf2325fb2
http://cgit.freedesktop.org/poppler/poppler/diff/?id=284a928996&id2=75c3466ba2
http://site.pi3.com.pl/adv/xpdf.txt
https://bugzilla.redhat.com/show_bug.cgi?id=526911
oval:org.mitre.oval:def:10969
xpdf-splashdrawimage-bo(53795)

CWE    1
CWE-399
OVAL    35
oval:org.mitre.oval:def:11826
oval:org.secpod.oval:def:300796
oval:org.secpod.oval:def:600137
oval:org.secpod.oval:def:300850
...

© SecPod Technologies