112 matches found
Authentication flaw
In Poppler 0.59.0, a floating point exception occurs in the ImageStream class in Stream.cc, which may lead to a potential attack when handling malicious PDF files...
CVE-2017-14617
In Poppler 0.59.0, a floating point exception occurs in the ImageStream class in Stream.cc, which may lead to a potential attack when handling malicious PDF files...
CVE-2017-14617
Poppler 0.59.0 contains a floating point exception in ImageStream (Stream.cc) that can be triggered by processing crafted PDFs, potentially enabling an attack via malicious files. The CVE-2017-14617 issue is acknowledged in multiple advisories (e.g., openSUSE SUSE-2018-648) with fixes in subseque...
CVE-2017-14617
In Poppler 0.59.0, a floating point exception occurs in the ImageStream class in Stream.cc, which may lead to a potential attack when handling malicious PDF files...
UBUNTU-CVE-2017-14617
In Poppler 0.59.0, a floating point exception occurs in the ImageStream class in Stream.cc, which may lead to a potential attack when handling malicious PDF files...
Memory corruption
poppler/Stream.cc in poppler before 0.22.1 allows context-dependent attackers to have an unspecified impact via vectors that trigger a read of uninitialized memory by the CCITTFaxStream::lookChar function...
CVE-2013-1790
CVE-2013-1790 affects poppler’s CCITTFaxStream implementation: poppler/Stream.cc before 0.22.1 may read uninitialized memory via CCITTFaxStream::lookChar, leading to an unspecified impact. The vulnerability is tied to reading uninitialized memory and is documented with a CVSS base of 6.8 (MEDIUM)...
FreeBSD : xpdf -- multiple remote Stream.CC vulnerabilities (2747fc39-915b-11dc-9239-001c2514716c)
Secunia Research reports : Secunia Research has discovered some vulnerabilities in Xpdf, which can be exploited by malicious people to compromise a user's system. - An array indexing error within the 'DCTStream::readProgressiveDataUnit' method in xpdf/Stream.cc can be exploited to corrupt memory...
xpdf -- multiple remote Stream.CC vulnerabilities
Secunia Research reports: Secunia Research has discovered some vulnerabilities in Xpdf, which can be exploited by malicious people to compromise a user's system. An array indexing error within the "DCTStream::readProgressiveDataUnit" method in xpdf/Stream.cc can be exploited to corrupt memory via...
security flaw
Stream.cc in Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to modify memory and possibly execute arbitrary code via a DCTDecode stream with 1 a large "number of components" value that is not checked by...
security flaw
Stream.cc in Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to modify memory and possibly execute arbitrary code via a DCTDecode stream with 1 a large "number of components" value that is not checked by...
CVE-2005-3191
Multiple heap-based buffer overflows in the 1 DCTStream::readProgressiveSOF and 2 DCTStream::readBaselineSOF functions in the DCT stream parsing code Stream.cc in xpdf 3.01 and earlier, as used in products such as a Poppler, b teTeX, c KDE kpdf, d pdftohtml, e KOffice KWord, f CUPS, and g...