Lucene search

[email protected]NVD:CVE-2010-3704

HistoryNov 05, 2010 - 6:00 p.m.

CVE-2010-3704

2010-11-0518:00:25

CWE-20

[email protected]

web.nvd.nist.gov

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

6.2 Medium

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

77.9%

JSON

The FoFiType1::parse function in fofi/FoFiType1.cc in the PDF parser in xpdf before 3.02pl5, poppler 0.8.7 and possibly other versions up to 0.15.1, kdegraphics, and possibly other products allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a PDF file with a crafted PostScript Type1 font that contains a negative array index, which bypasses input validation and triggers memory corruption.

Affected configurations

NVD

Node

popplerpopplerMatch0.8.7

popplerpopplerMatch0.9.0

popplerpopplerMatch0.9.1

popplerpopplerMatch0.9.2

popplerpopplerMatch0.9.3

popplerpopplerMatch0.10.0

popplerpopplerMatch0.10.1

popplerpopplerMatch0.10.2

popplerpopplerMatch0.10.3

popplerpopplerMatch0.10.4

popplerpopplerMatch0.10.5

popplerpopplerMatch0.10.6

popplerpopplerMatch0.10.7

popplerpopplerMatch0.11.0

popplerpopplerMatch0.11.1

popplerpopplerMatch0.11.2

popplerpopplerMatch0.11.3

popplerpopplerMatch0.12.0

popplerpopplerMatch0.12.1

popplerpopplerMatch0.12.2

popplerpopplerMatch0.12.3

popplerpopplerMatch0.12.4

popplerpopplerMatch0.13.0

popplerpopplerMatch0.13.1

popplerpopplerMatch0.13.2

popplerpopplerMatch0.13.3

popplerpopplerMatch0.13.4

popplerpopplerMatch0.14.0

popplerpopplerMatch0.14.1

popplerpopplerMatch0.14.2

popplerpopplerMatch0.14.3

popplerpopplerMatch0.14.4

popplerpopplerMatch0.14.5

popplerpopplerMatch0.15.0

popplerpopplerMatch0.15.1

Node

foolabsxpdfMatch0.5a

foolabsxpdfMatch0.7a

foolabsxpdfMatch0.91a

foolabsxpdfMatch0.91b

foolabsxpdfMatch0.91c

foolabsxpdfMatch0.92a

foolabsxpdfMatch0.92b

foolabsxpdfMatch0.92c

foolabsxpdfMatch0.92d

foolabsxpdfMatch0.92e

foolabsxpdfMatch0.93a

foolabsxpdfMatch0.93b

foolabsxpdfMatch0.93c

foolabsxpdfMatch1.00a

foolabsxpdfMatch3.0.1

foolabsxpdfMatch3.02pl1

foolabsxpdfMatch3.02pl2

foolabsxpdfMatch3.02pl3

glyphandcogxpdfreaderRange≤3.02

glyphandcogxpdfreaderMatch0.2

glyphandcogxpdfreaderMatch0.3

glyphandcogxpdfreaderMatch0.4

glyphandcogxpdfreaderMatch0.5

glyphandcogxpdfreaderMatch0.6

glyphandcogxpdfreaderMatch0.7

glyphandcogxpdfreaderMatch0.80

glyphandcogxpdfreaderMatch0.90

glyphandcogxpdfreaderMatch0.91

glyphandcogxpdfreaderMatch0.92

glyphandcogxpdfreaderMatch0.93

glyphandcogxpdfreaderMatch1.00

glyphandcogxpdfreaderMatch1.01

glyphandcogxpdfreaderMatch2.00

glyphandcogxpdfreaderMatch2.01

glyphandcogxpdfreaderMatch2.02

glyphandcogxpdfreaderMatch2.03

glyphandcogxpdfreaderMatch3.00

glyphandcogxpdfreaderMatch3.01

glyphandcogxpdfreaderMatch3.02

kdekdegraphics

References

ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.02pl5.patch

cgit.freedesktop.org/poppler/poppler/commit/?id=39d140bfc0b8239bdd96d6a55842034ae5c05473

lists.fedoraproject.org/pipermail/package-announce/2010-November/050268.html

lists.fedoraproject.org/pipermail/package-announce/2010-November/050285.html

lists.fedoraproject.org/pipermail/package-announce/2010-November/050390.html

lists.fedoraproject.org/pipermail/package-announce/2010-October/049392.html

lists.fedoraproject.org/pipermail/package-announce/2010-October/049523.html

lists.fedoraproject.org/pipermail/package-announce/2010-October/049545.html

lists.opensuse.org/opensuse-security-announce/2010-11/msg00006.html

lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html

rhn.redhat.com/errata/RHSA-2012-1201.html

secunia.com/advisories/42141

secunia.com/advisories/42357

secunia.com/advisories/42397

secunia.com/advisories/42691

secunia.com/advisories/43079

slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.571720

www.debian.org/security/2010/dsa-2119

www.debian.org/security/2010/dsa-2135

www.mandriva.com/security/advisories?name=MDVSA-2010:228

www.mandriva.com/security/advisories?name=MDVSA-2010:229

www.mandriva.com/security/advisories?name=MDVSA-2010:230

www.mandriva.com/security/advisories?name=MDVSA-2010:231

www.mandriva.com/security/advisories?name=MDVSA-2012:144

www.openoffice.org/security/cves/CVE-2010-3702_CVE-2010-3704.html

www.openwall.com/lists/oss-security/2010/10/04/6

www.redhat.com/support/errata/RHSA-2010-0749.html

www.redhat.com/support/errata/RHSA-2010-0751.html

www.redhat.com/support/errata/RHSA-2010-0752.html

www.redhat.com/support/errata/RHSA-2010-0753.html

www.redhat.com/support/errata/RHSA-2010-0859.html

www.securityfocus.com/bid/43841

www.ubuntu.com/usn/USN-1005-1

www.vupen.com/english/advisories/2010/2897

www.vupen.com/english/advisories/2010/3097

www.vupen.com/english/advisories/2011/0230

bugzilla.redhat.com/show_bug.cgi?id=638960

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

6.2 Medium

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

77.9%

JSON

Related for NVD:CVE-2010-3704

prion1 debiancve1 veracode1 cve1 ubuntucve1 cvelist1 nessus65 openvas55 centos5 altlinux4 oraclelinux6 redhat6 debian2 fedora6 securityvulns2 osv1 slackware2 ubuntu1 gentoo2 freebsd1