Lucene search
+L

198 matches found

redhat
redhat
added 2010/05/06 7:3 p.m.7 views

xpdf: Multiple integer overflows in JBIG2 decoder

Multiple integer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allow remote attackers to cause a denial of service crash via a crafted PDF file, related to 1 JBIG2Stream::readSymbolDictSeg, 2 JBIG2Stream::readSymbolDictSeg, and 3...

4.3CVSS5.9AI score0.02577EPSS
Exploits1References4
redhat
redhat
added 2010/05/06 6:53 p.m.6 views

PDF JBIG2 decoder OOB read

The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to cause a denial of service crash via a crafted PDF file that triggers an out-of-bounds read...

4.3CVSS5.9AI score0.0377EPSS
Exploits1References4
redhat
redhat
added 2010/05/06 6:53 p.m.5 views

PDF JBIG2 multiple input validation flaws

Multiple "input validation flaws" in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allow remote attackers to execute arbitrary code via a crafted PDF file...

6.8CVSS6.2AI score0.05491EPSS
Exploits1References4
openvas
openvas
added 2010/03/12 12:0 a.m.28 views

Mandriva Update for poppler MDVSA-2010:055 (poppler)

Check for the Version of poppler OpenVAS Vulnerability Test Mandriva Update for poppler MDVSA-2010:055 poppler Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

9.3CVSS0.7AI score0.10228EPSS
Exploits9References2
openvas
openvas
added 2010/03/12 12:0 a.m.28 views

Mandriva Update for poppler MDVSA-2010:055 (poppler)

Check for the Version of poppler OpenVAS Vulnerability Test Mandriva Update for poppler MDVSA-2010:055 poppler Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

9.3CVSS8AI score0.10228EPSS
Exploits9References2
nessus
nessus
added 2010/03/08 12:0 a.m.36 views

Mandriva Linux Security Advisory : poppler (MDVSA-2010:055)

An out-of-bounds reading flaw in the JBIG2 decoder allows remote attackers to cause a denial of service crash via a crafted PDF file CVE-2009-0799. Multiple input validation flaws in the JBIG2 decoder allows remote attackers to execute arbitrary code via a crafted PDF file CVE-2009-0800. An integ...

9.3CVSS7.1AI score0.10228EPSS
Exploits9References17
nessus
nessus
added 2009/09/24 12:0 a.m.51 views

SuSE 11 Security Update : acroread_ja (SAT Patch Number 769)

Multiple flaws in the JBIG2 decoder and the JavaScript engine of the Adobe Reader allowed attackers to crash acroread or even execute arbitrary code by tricking users into opening specially crafted PDF files. CVE-2009-0658 / CVE-2009-0927 / CVE-2009-0193 / CVE-2009-0928 / CVE-2009-1061 /...

10CVSS8AI score0.96632EPSS
Exploits22References13
nessus
nessus
added 2009/09/24 12:0 a.m.28 views

SuSE 11 Security Update : GhostScript (SAT Patch Number 876)

Specially crafted file could cause a heap-overflow in JBIG2 decoder CVE-2009-0196, an integer overflow in ICC library CVE-2009-0792, a buffer overflow in BaseFont writer module CVE-2008-6679 or crash the CCITTFax decoder. CVE-2007-6725 The previous security update introduced a regression that bro...

9.3CVSS5.3AI score0.07365EPSS
Exploits3References11
nessus
nessus
added 2009/07/21 12:0 a.m.36 views

openSUSE Security Update : acroread (acroread-689)

Multiple flaws in the JBIG2 decoder and the JavaScript engine of the Adobe Reader allowed attackers to crash acroread or even execute arbitrary code by tricking users into opening specially crafted PDF files. CVE-2009-0658, CVE-2009-0927, CVE-2009-0193, CVE-2009-0928, CVE-2009-1061, CVE-2009-1062...

10CVSS8AI score0.96632EPSS
Exploits22References8
nessus
nessus
added 2009/07/21 12:0 a.m.40 views

openSUSE Security Update : acroread (acroread-689)

Multiple flaws in the JBIG2 decoder and the JavaScript engine of the Adobe Reader allowed attackers to crash acroread or even execute arbitrary code by tricking users into opening specially crafted PDF files. CVE-2009-0658, CVE-2009-0927, CVE-2009-0193, CVE-2009-0928, CVE-2009-1061, CVE-2009-1062...

10CVSS8AI score0.96632EPSS
Exploits22References8
nessus
nessus
added 2009/07/21 12:0 a.m.40 views

openSUSE Security Update : ghostscript-devel (ghostscript-devel-877)

Specially crafted file could cause a heap-overflow in JBIG2 decoder CVE-2009-0196, an integer overflow in ICC library CVE-2009-0792, a buffer overflow in BaseFont writer module CVE-2008-6679 or crash the CCITTFax decoder CVE-2007-6725. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

9.3CVSS5.3AI score0.07365EPSS
Exploits3References7
openvas
openvas
added 2009/06/30 12:0 a.m.20 views

Foxit Reader Multiple Denial of Service Vulnerabilities (Jun 2009)

Foxit Reader is prone to multiple Denial of Service vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS6.4AI score0.05679EPSS
Exploits1References5
nvd
nvd
added 2009/06/23 9:30 p.m.23 views

CVE-2009-0690

The Foxit JPEG2000/JBIG2 Decoder add-on before 2.0.2009.616 for Foxit Reader 3.0 before Build 1817 does not properly handle a negative value for the stream offset in a JPEG2000 aka JPX stream, which allows remote attackers to cause a denial of service memory corruption and application crash or...

9.3CVSS8AI score0.05679EPSS
Exploits0References6
prion
prion
added 2009/06/23 9:30 p.m.20 views

Out-of-bounds

The Foxit JPEG2000/JBIG2 Decoder add-on before 2.0.2009.616 for Foxit Reader 3.0 before Build 1817 does not properly handle a negative value for the stream offset in a JPEG2000 aka JPX stream, which allows remote attackers to cause a denial of service memory corruption and application crash or...

9.3CVSS8.7AI score0.05679EPSS
Exploits0References6Affected Software2
openvas
openvas
added 2009/05/20 12:0 a.m.37 views

RedHat Security Advisory RHSA-2009:0480

The remote host is missing updates announced in advisory RHSA-2009:0480. Poppler is a Portable Document Format PDF rendering library, used by applications such as Evince. Multiple integer overflow flaws were found in poppler. An attacker could create a malicious PDF file that would cause...

7.5CVSS1.3AI score0.07347EPSS
Exploits1References2
redhat
redhat
added 2009/05/13 2:32 p.m.3 views

xpdf: Multiple integer overflows in JBIG2 decoder

Multiple integer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allow remote attackers to cause a denial of service crash via a crafted PDF file, related to 1 JBIG2Stream::readSymbolDictSeg, 2 JBIG2Stream::readSymbolDictSeg, and 3...

4.3CVSS5.9AI score0.02577EPSS
Exploits1References4
redhat
redhat
added 2009/05/13 2:32 p.m.8 views

PDF JBIG2 multiple input validation flaws

Multiple "input validation flaws" in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allow remote attackers to execute arbitrary code via a crafted PDF file...

6.8CVSS6.2AI score0.05491EPSS
Exploits1References4
redhat
redhat
added 2009/05/13 2:32 p.m.6 views

xpdf: Multiple buffer overflows in JBIG2 decoder (setBitmap, readSymbolDictSeg) (CVE-2009-0195)

Multiple buffer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allow remote attackers to cause a denial of service crash via a crafted PDF file, related to 1 JBIG2SymbolDict::setBitmap and 2 JBIG2Stream::readSymbolDictSeg...

6.8CVSS6AI score0.05374EPSS
Exploits1References4
redhat
redhat
added 2009/05/13 2:32 p.m.47 views

Important: Red Hat Security Advisory: poppler security update

Updated poppler packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. Poppler is a Portable Document Format PDF rendering library, used by applications such...

9.3CVSS6.3AI score0.08703EPSS
Exploits4References14
openvas
openvas
added 2009/05/11 12:0 a.m.62 views

FreeBSD Ports: cups-base

The remote host is missing an update to the system as announced in the referenced advisory. VID 736e55bc-39bb-11de-a493-001b77d09812 OpenVAS Vulnerability Test $ Description: Auto generated from VID 736e55bc-39bb-11de-a493-001b77d09812 Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

6.8CVSS0.2AI score0.04246EPSS
Exploits3
Rows per page
Query Builder