Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2007-4352HistoryNov 08, 2007 - 2:46 a.m.
CVE-2007-4352
2007-11-0802:46:00
Debian Security Bug Tracker
security-tracker.debian.org
19
7.6 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
Array index error in the DCTStream::readProgressiveDataUnit method in xpdf/Stream.cc in Xpdf 3.02pl1, as used in poppler, teTeX, KDE, KOffice, CUPS, and other products, allows remote attackers to trigger memory corruption and execute arbitrary code via a crafted PDF file.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | cups | <ย 1.1.22-7 | cups_1.1.22-7_all.deb |
| Debian | 11 | all | cups | <ย 1.1.22-7 | cups_1.1.22-7_all.deb |
| Debian | 10 | all | cups | <ย 1.1.22-7 | cups_1.1.22-7_all.deb |
| Debian | 999 | all | cups | <ย 1.1.22-7 | cups_1.1.22-7_all.deb |
| Debian | 13 | all | cups | <ย 1.1.22-7 | cups_1.1.22-7_all.deb |
| Debian | 12 | all | libextractor | <ย 0.5.12-1 | libextractor_0.5.12-1_all.deb |
| Debian | 11 | all | libextractor | <ย 0.5.12-1 | libextractor_0.5.12-1_all.deb |
| Debian | 10 | all | libextractor | <ย 0.5.12-1 | libextractor_0.5.12-1_all.deb |
| Debian | 999 | all | libextractor | <ย 0.5.12-1 | libextractor_0.5.12-1_all.deb |
| Debian | 13 | all | libextractor | <ย 0.5.12-1 | libextractor_0.5.12-1_all.deb |
Related
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:20:57
cve
cve
CVE-2007-4352
2007-11-08 02:46:00
prion
prion
Memory corruption
2007-11-08 02:46:00
nvd
nvd
CVE-2007-4352
2007-11-08 02:46:00
cvelist
cvelist
CVE-2007-4352
2007-11-08 02:00:00
ubuntucve
ubuntucve
CVE-2007-4352
2007-11-07 00:00:00
seebug
seebug
Xpdfๅคไธช่ฟ็จStream.CCๆผๆด
2007-11-11 00:00:00
fedora
fedora
[SECURITY] Fedora 8 Update: poppler-0.6.2-1.fc8
2007-12-11 00:52:22
[SECURITY] Fedora 8 Update: xpdf-3.02-4.fc8
2007-11-09 23:41:42
[SECURITY] Fedora 7 Update: kdeedu-3.5.8-2.fc7
2007-11-13 00:05:02
openvas
openvas
Fedora Update for kdebindings FEDORA-2007-2985
2009-02-27 00:00:00
Mandriva Update for poppler MDKSA-2007:227 (poppler)
2009-04-09 00:00:00
Fedora Update for kdeadmin FEDORA-2007-2985
2009-02-27 00:00:00
redhat
redhat
(RHSA-2007:1025) Important: gpdf security update
2007-11-07 00:00:00
(RHSA-2007:1021) Important: cups security update
2007-11-07 00:00:00
(RHSA-2007:1026) Important: poppler security update
2007-11-07 00:00:00
debian
debian
[SECURITY] [DSA 1509-1] New koffice packages fix multiple vulnerabilities
2008-02-25 23:14:40
[SECURITY] [DSA 1537-1] New xpdf packages fix multiple vulnerabilities
2008-04-02 21:25:32
[SECURITY] [DSA 1537-1] New xpdf packages fix multiple vulnerabilities
2008-04-02 21:25:35
nessus
nessus
Mandrake Linux Security Advisory : cups (MDKSA-2007:228)
2007-11-20 00:00:00
Debian DSA-1537-1 : xpdf - several vulnerabilities
2008-04-11 00:00:00
Mandrake Linux Security Advisory : kdegraphics (MDKSA-2007:221)
2009-04-23 00:00:00
securityvulns
securityvulns
Xpdf multiple security vulnerabilities
2007-11-08 00:00:00
Secunia Research: Xpdf "Stream.cc" Multiple Vulnerabilities
2007-11-08 00:00:00
suse
suse
remote code execution in xpdf, kdegraphics3-pdf, koffice, libextractor,
2007-11-14 16:50:40
oraclelinux
oraclelinux
Important: poppler security update
2007-11-23 00:00:00
Important: xpdf security update
2007-11-07 00:00:00
Important: kdegraphics security update
2007-11-12 00:00:00
osv
osv
koffice - multiple vulnerabilities
2008-02-25 00:00:00
xpdf
2008-04-02 00:00:00
poppler - several vulnerabilities
2008-02-05 00:00:00
centos
centos
gpdf security update
2007-11-07 19:57:28
xpdf security update
2007-11-07 19:58:17
kdegraphics security update
2007-11-12 16:32:18
freebsd
freebsd
xpdf -- multiple remote Stream.CC vulnerabilities
2007-11-07 00:00:00
ubuntu
ubuntu
KOffice vulnerabilities
2007-11-15 00:00:00
poppler vulnerabilities
2007-11-14 00:00:00
gentoo
gentoo
Poppler, KDE: User-assisted execution of arbitrary code
2007-11-18 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 5 package xpdf version 3.02-alt3
2007-11-12 00:00:00
slackware
slackware
[slackware-security] xpdf/poppler/koffice/kdegraphics
2007-11-12 09:06:02
7.6 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
Related for DEBIANCVE:CVE-2007-4352