Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2007-4352

Опубликовано: 08 нояб. 2007
Источник: debian
EPSS Средний

Описание

Array index error in the DCTStream::readProgressiveDataUnit method in xpdf/Stream.cc in Xpdf 3.02pl1, as used in poppler, teTeX, KDE, KOffice, CUPS, and other products, allows remote attackers to trigger memory corruption and execute arbitrary code via a crafted PDF file.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
popplerfixed0.6.2-1package
kdegraphicsfixed4:3.5.8-2package
kdegraphicsnot-affectedetchpackage
xpdffixed3.02-1.3package
kofficefixed1:1.6.3-4package
cupsysfixed1.1.22-7package
cupsfixed1.1.22-7package
gpdfremovedpackage
pdftohtmlremovedpackage
pdftohtmlfixed0.36-13etch1etchpackage
tetex-binfixed3.0-12package
libextractorfixed0.5.12-1package
swftoolsfixed0.9.2+ds1-2package

Примечания

  • pdftex links to poppler since 3.0-12, thus marking as fixed

  • cups uses xpdf-utils and poppler-utils since version 1.1.22-7

  • libextractor uses internal pdf decoder since 0.5.12-1, thus marking as fixed

EPSS

Процентиль: 95%
0.18813
Средний

Связанные уязвимости

ubuntu логотип

CVE-2007-4352

ubuntu
почти 18 лет назад

Array index error in the DCTStream::readProgressiveDataUnit method in xpdf/Stream.cc in Xpdf 3.02pl1, as used in poppler, teTeX, KDE, KOffice, CUPS, and other products, allows remote attackers to trigger memory corruption and execute arbitrary code via a crafted PDF file.

redhat логотип

CVE-2007-4352

redhat
почти 18 лет назад

Array index error in the DCTStream::readProgressiveDataUnit method in xpdf/Stream.cc in Xpdf 3.02pl1, as used in poppler, teTeX, KDE, KOffice, CUPS, and other products, allows remote attackers to trigger memory corruption and execute arbitrary code via a crafted PDF file.

nvd логотип

CVE-2007-4352

nvd
почти 18 лет назад

Array index error in the DCTStream::readProgressiveDataUnit method in xpdf/Stream.cc in Xpdf 3.02pl1, as used in poppler, teTeX, KDE, KOffice, CUPS, and other products, allows remote attackers to trigger memory corruption and execute arbitrary code via a crafted PDF file.

github логотип

GHSA-7x5f-fvjf-pxrp

github
больше 3 лет назад

Array index error in the DCTStream::readProgressiveDataUnit method in xpdf/Stream.cc in Xpdf 3.02pl1, as used in poppler, teTeX, KDE, KOffice, CUPS, and other products, allows remote attackers to trigger memory corruption and execute arbitrary code via a crafted PDF file.

oracle-oval логотип

ELSA-2007-1026

oracle-oval
больше 17 лет назад

ELSA-2007-1026: Important: poppler security update (IMPORTANT)

EPSS

Процентиль: 95%
0.18813
Средний