Lucene search

[email protected]CVE-2009-1183

HistoryApr 23, 2009 - 5:30 p.m.

CVE-2009-1183

2009-04-2317:30:00

CWE-399

[email protected]

web.nvd.nist.gov

cve-2009-1183

jbig2

mmr decoder

xpdf

cups

poppler

denial of service

remote attack

7.3 High

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.023 Low

EPSS

Percentile

89.7%

JSON

The JBIG2 MMR decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to cause a denial of service (infinite loop and hang) via a crafted PDF file.

CPENameOperatorVersion
foolabs:xpdffoolabs xpdfeq0.91c
foolabs:xpdffoolabs xpdfeq0.91b
foolabs:xpdffoolabs xpdfeq0.93b
foolabs:xpdffoolabs xpdfeq1.00a
foolabs:xpdffoolabs xpdfeq0.91a
foolabs:xpdffoolabs xpdfeq0.92e
foolabs:xpdffoolabs xpdfeq0.5a
foolabs:xpdffoolabs xpdfeq0.92b
foolabs:xpdffoolabs xpdfeq0.93c
foolabs:xpdffoolabs xpdfeq0.92c

CPE	Name	Operator	Version
foolabs:xpdf	foolabs xpdf	eq	0.91c
foolabs:xpdf	foolabs xpdf	eq	0.91b
foolabs:xpdf	foolabs xpdf	eq	0.93b
foolabs:xpdf	foolabs xpdf	eq	1.00a
foolabs:xpdf	foolabs xpdf	eq	0.91a
foolabs:xpdf	foolabs xpdf	eq	0.92e
foolabs:xpdf	foolabs xpdf	eq	0.5a
foolabs:xpdf	foolabs xpdf	eq	0.92b
foolabs:xpdf	foolabs xpdf	eq	0.93c
foolabs:xpdf	foolabs xpdf	eq	0.92c

Rows per page:

1-10 of 1381

References

lists.opensuse.org/opensuse-security-announce/2009-04/msg00011.html

lists.opensuse.org/opensuse-security-announce/2009-05/msg00000.html

lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html

poppler.freedesktop.org/releases.html

rhn.redhat.com/errata/RHSA-2009-0458.html

secunia.com/advisories/34291

secunia.com/advisories/34481

secunia.com/advisories/34746

secunia.com/advisories/34755

secunia.com/advisories/34756

secunia.com/advisories/34852

secunia.com/advisories/34959

secunia.com/advisories/34963

secunia.com/advisories/34991

secunia.com/advisories/35037

secunia.com/advisories/35064

secunia.com/advisories/35065

secunia.com/advisories/35618

secunia.com/advisories/35685

slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.578477

www.debian.org/security/2009/dsa-1790

www.debian.org/security/2009/dsa-1793

www.kb.cert.org/vuls/id/196617

www.mandriva.com/security/advisories?name=MDVSA-2009:101

www.mandriva.com/security/advisories?name=MDVSA-2010:087

www.mandriva.com/security/advisories?name=MDVSA-2011:175

www.redhat.com/support/errata/RHSA-2009-0429.html

www.redhat.com/support/errata/RHSA-2009-0430.html

www.redhat.com/support/errata/RHSA-2009-0431.html

www.redhat.com/support/errata/RHSA-2009-0480.html

www.securityfocus.com/bid/34568

www.securitytracker.com/id?1022072

www.vupen.com/english/advisories/2009/1065

www.vupen.com/english/advisories/2009/1066

www.vupen.com/english/advisories/2009/1076

www.vupen.com/english/advisories/2009/1077

www.vupen.com/english/advisories/2010/1040

bugzilla.redhat.com/show_bug.cgi?id=495899

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10769

www.redhat.com/archives/fedora-package-announce/2009-July/msg00567.html

www.redhat.com/archives/fedora-package-announce/2009-June/msg01277.html

www.redhat.com/archives/fedora-package-announce/2009-June/msg01291.html

7.3 High

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.023 Low

EPSS

Percentile

89.7%

JSON

Related for CVE-2009-1183

prion1 veracode1 ubuntucve1 cvelist1 debiancve1 cert1 openvas96 altlinux3 fedora3 nessus57 freebsd1 securityvulns3 debian4 redhat7 slackware1 oraclelinux6 osv2 centos7 suse1 seebug1 ubuntu1