Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2007-3387

Опубликовано: 30 июл. 2007
Источник: ubuntu
Приоритет: medium
CVSS2: 6.8

Описание

Integer overflow in the StreamPredictor::StreamPredictor function in xpdf 3.02, as used in (1) poppler before 0.5.91, (2) gpdf before 2.8.2, (3) kpdf, (4) kdegraphics, (5) CUPS, (6) PDFedit, and other products, might allow remote attackers to execute arbitrary code via a crafted PDF file that triggers a stack-based buffer overflow in the StreamPredictor::getNextLine function.

РелизСтатусПримечание
dapper

not-affected

devel

not-affected

edgy

not-affected

feisty

not-affected

gutsy

not-affected

hardy

not-affected

intrepid

not-affected

jaunty

not-affected

karmic

not-affected

upstream

needs-triage

Показывать по

РелизСтатусПримечание
dapper

released

1.5.0-0ubuntu9.2
devel

released

1.6.3-0ubuntu5
edgy

released

1.5.2-0ubuntu2.2
feisty

released

1.6.2-0ubuntu1.1
gutsy

released

1.6.3-0ubuntu5
hardy

released

1.6.3-0ubuntu5
intrepid

released

1.6.3-0ubuntu5
jaunty

released

1.6.3-0ubuntu5
karmic

released

1.6.3-0ubuntu5
upstream

needs-triage

Показывать по

РелизСтатусПримечание
dapper

released

0.5.1-0ubuntu7.2
devel

released

0.6-0ubuntu1
edgy

released

0.5.4-0ubuntu4.2
feisty

released

0.5.4-0ubuntu8.1
gutsy

released

0.6-0ubuntu1
hardy

released

0.6-0ubuntu1
intrepid

released

0.6-0ubuntu1
jaunty

released

0.6-0ubuntu1
karmic

released

0.6-0ubuntu1
upstream

needs-triage

Показывать по

РелизСтатусПримечание
dapper

ignored

end of life
devel

released

3.02-1.1ubuntu1
edgy

ignored

end of life, was needed
feisty

ignored

end of life, was needed
gutsy

released

3.02-1.1ubuntu1
hardy

released

3.02-1.1ubuntu1
intrepid

released

3.02-1.1ubuntu1
jaunty

released

3.02-1.1ubuntu1
karmic

released

3.02-1.1ubuntu1
upstream

needs-triage

Показывать по

Ссылки на источники

6.8 Medium

CVSS2

Связанные уязвимости

redhat логотип

CVE-2007-3387

redhat
около 18 лет назад

Integer overflow in the StreamPredictor::StreamPredictor function in xpdf 3.02, as used in (1) poppler before 0.5.91, (2) gpdf before 2.8.2, (3) kpdf, (4) kdegraphics, (5) CUPS, (6) PDFedit, and other products, might allow remote attackers to execute arbitrary code via a crafted PDF file that triggers a stack-based buffer overflow in the StreamPredictor::getNextLine function.

nvd логотип

CVE-2007-3387

nvd
около 18 лет назад

Integer overflow in the StreamPredictor::StreamPredictor function in xpdf 3.02, as used in (1) poppler before 0.5.91, (2) gpdf before 2.8.2, (3) kpdf, (4) kdegraphics, (5) CUPS, (6) PDFedit, and other products, might allow remote attackers to execute arbitrary code via a crafted PDF file that triggers a stack-based buffer overflow in the StreamPredictor::getNextLine function.

debian логотип

CVE-2007-3387

debian
около 18 лет назад

Integer overflow in the StreamPredictor::StreamPredictor function in x ...

github логотип

GHSA-v25x-frpw-qg4x

github
больше 3 лет назад

Integer overflow in the StreamPredictor::StreamPredictor function in xpdf 3.02, as used in (1) poppler before 0.5.91, (2) gpdf before 2.8.2, (3) kpdf, (4) kdegraphics, (5) CUPS, (6) PDFedit, and other products, might allow remote attackers to execute arbitrary code via a crafted PDF file that triggers a stack-based buffer overflow in the StreamPredictor::getNextLine function.

oracle-oval логотип

ELSA-2007-0732

oracle-oval
около 18 лет назад

ELSA-2007-0732: Important: poppler security update (IMPORTANT)

6.8 Medium

CVSS2