Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2007-5392HistoryNov 08, 2007 - 2:46 a.m.
CVE-2007-5392
2007-11-0802:46:00
Debian Security Bug Tracker
security-tracker.debian.org
16
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.163 Low
EPSS
Percentile
95.9%
Integer overflow in the DCTStream::reset method in xpdf/Stream.cc in Xpdf 3.02p11 allows remote attackers to execute arbitrary code via a crafted PDF file, resulting in a heap-based buffer overflow.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | cups | < 1.1.22-7 | cups_1.1.22-7_all.deb |
| Debian | 11 | all | cups | < 1.1.22-7 | cups_1.1.22-7_all.deb |
| Debian | 10 | all | cups | < 1.1.22-7 | cups_1.1.22-7_all.deb |
| Debian | 999 | all | cups | < 1.1.22-7 | cups_1.1.22-7_all.deb |
| Debian | 13 | all | cups | < 1.1.22-7 | cups_1.1.22-7_all.deb |
| Debian | 12 | all | libextractor | < 0.5.12-1 | libextractor_0.5.12-1_all.deb |
| Debian | 11 | all | libextractor | < 0.5.12-1 | libextractor_0.5.12-1_all.deb |
| Debian | 10 | all | libextractor | < 0.5.12-1 | libextractor_0.5.12-1_all.deb |
| Debian | 999 | all | libextractor | < 0.5.12-1 | libextractor_0.5.12-1_all.deb |
| Debian | 13 | all | libextractor | < 0.5.12-1 | libextractor_0.5.12-1_all.deb |
Related
prion
prion
Integer overflow
2007-11-08 02:46:00
ubuntucve
ubuntucve
CVE-2007-5392
2007-11-07 00:00:00
cve
cve
CVE-2007-5392
2007-11-08 02:46:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:20:57
openvas
openvas
Fedora Update for kdebindings FEDORA-2007-2985
2009-02-27 00:00:00
Fedora Update for kdeutils FEDORA-2007-2985
2009-02-27 00:00:00
Mandriva Update for poppler MDKSA-2007:227 (poppler)
2009-04-09 00:00:00
fedora
fedora
[SECURITY] Fedora 7 Update: kde-i18n-3.5.8-1.fc7
2007-11-13 00:05:02
[SECURITY] Fedora 8 Update: poppler-0.6.2-1.fc8
2007-12-11 00:52:22
[SECURITY] Fedora 7 Update: kdeedu-3.5.8-2.fc7
2007-11-13 00:05:02
nessus
nessus
Debian DSA-1537-1 : xpdf - several vulnerabilities
2008-04-11 00:00:00
RHEL 4 : gpdf (RHSA-2007:1025)
2009-04-23 00:00:00
Mandrake Linux Security Advisory : poppler (MDKSA-2007:227)
2009-04-23 00:00:00
redhat
redhat
(RHSA-2007:1025) Important: gpdf security update
2007-11-07 00:00:00
(RHSA-2007:1029) Important: xpdf security update
2007-11-07 00:00:00
(RHSA-2007:1024) Important: kdegraphics security update
2007-11-12 00:00:00
debian
debian
[SECURITY] [DSA 1509-1] New koffice packages fix multiple vulnerabilities
2008-02-25 23:14:40
[SECURITY] [DSA 1480-1] New poppler packages fix several vulnerabilities
2008-02-05 17:13:47
[SECURITY] [DSA 1537-1] New xpdf packages fix multiple vulnerabilities
2008-04-02 21:25:32
osv
osv
poppler - several vulnerabilities
2008-02-05 00:00:00
koffice - multiple vulnerabilities
2008-02-25 00:00:00
xpdf
2008-04-02 00:00:00
centos
centos
kdegraphics security update
2007-11-12 16:32:18
gpdf security update
2007-11-07 19:57:28
xpdf security update
2007-11-07 19:58:17
ubuntu
ubuntu
poppler vulnerabilities
2007-11-14 00:00:00
KOffice vulnerabilities
2007-11-15 00:00:00
gentoo
gentoo
Poppler, KDE: User-assisted execution of arbitrary code
2007-11-18 00:00:00
freebsd
freebsd
xpdf -- multiple remote Stream.CC vulnerabilities
2007-11-07 00:00:00
suse
suse
remote code execution in xpdf, kdegraphics3-pdf, koffice, libextractor,
2007-11-14 16:50:40
securityvulns
securityvulns
Xpdf multiple security vulnerabilities
2007-11-08 00:00:00
Secunia Research: Xpdf "Stream.cc" Multiple Vulnerabilities
2007-11-08 00:00:00
oraclelinux
oraclelinux
Important: poppler security update
2007-11-23 00:00:00
Important: xpdf security update
2007-11-07 00:00:00
Important: kdegraphics security update
2007-11-12 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 5 package xpdf version 3.02-alt3
2007-11-12 00:00:00
slackware
slackware
[slackware-security] xpdf/poppler/koffice/kdegraphics
2007-11-12 09:06:02
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.163 Low
EPSS
Percentile
95.9%
Related for DEBIANCVE:CVE-2007-5392