Lucene search

K
freebsdFreeBSD2747FC39-915B-11DC-9239-001C2514716C
HistoryNov 07, 2007 - 12:00 a.m.

xpdf -- multiple remote Stream.CC vulnerabilities

2007-11-0700:00:00
vuxml.freebsd.org
23

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

EPSS

0.334

Percentile

97.1%

Secunia Research reports:

Secunia Research has discovered some vulnerabilities in Xpdf,
which can be exploited by malicious people to compromise a user’s
system.

An array indexing error within the
“DCTStream::readProgressiveDataUnit()” method in xpdf/Stream.cc
can be exploited to corrupt memory via a specially crafted PDF
file.
An integer overflow error within the “DCTStream::reset()”
method in xpdf/Stream.cc can be exploited to cause a heap-based
buffer overflow via a specially crafted PDF file.
A boundary error within the “CCITTFaxStream::lookChar()” method
in xpdf/Stream.cc can be exploited to cause a heap-based buffer
overflow by tricking a user into opening a PDF file containing a
specially crafted “CCITTFaxDecode” filter.

Successful exploitation may allow execution of arbitrary code.

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

EPSS

0.334

Percentile

97.1%