[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248268

 
 

909

 
 

195051

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2010-3704Date: (C)2010-11-05   (M)2023-12-22


The FoFiType1::parse function in fofi/FoFiType1.cc in the PDF parser in xpdf before 3.02pl5, poppler 0.8.7 and possibly other versions up to 0.15.1, kdegraphics, and possibly other products allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a PDF file with a crafted PostScript Type1 font that contains a negative array index, which bypasses input validation and triggers memory corruption.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 6.8
Exploit Score: 8.6
Impact Score: 6.4
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: PARTIAL
Integrity: PARTIAL
Availability: PARTIAL
  
Reference:
SECUNIA-42141
SECUNIA-42357
SECUNIA-42397
SECUNIA-42691
SECUNIA-43079
BID-43841
ADV-2010-2897
ADV-2010-3097
ADV-2011-0230
DSA-2119
DSA-2135
FEDORA-2010-15857
FEDORA-2010-15911
FEDORA-2010-15981
FEDORA-2010-16662
FEDORA-2010-16705
FEDORA-2010-16744
MDVSA-2010:228
MDVSA-2010:229
MDVSA-2010:230
MDVSA-2010:231
MDVSA-2012:144
RHSA-2010:0749
RHSA-2010:0751
RHSA-2010:0752
RHSA-2010:0753
RHSA-2010:0859
RHSA-2012:1201
SSA:2010-324-01
SUSE-SR:2010:022
SUSE-SR:2010:024
USN-1005-1
http://www.openwall.com/lists/oss-security/2010/10/04/6
ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.02pl5.patch
http://cgit.freedesktop.org/poppler/poppler/commit/?id=39d140bfc0b8239bdd96d6a55842034ae5c05473
http://www.openoffice.org/security/cves/CVE-2010-3702_CVE-2010-3704.html
https://bugzilla.redhat.com/show_bug.cgi?id=638960

CPE    2
cpe:/a:foolabs:xpdf:3.0.1
cpe:/a:kde:kdegraphics
CWE    1
CWE-20
OVAL    30
oval:org.secpod.oval:def:200094
oval:org.secpod.oval:def:300019
oval:org.secpod.oval:def:500398
oval:org.secpod.oval:def:200013
...

© SecPod Technologies