EUVD-2017-12152

Malware in sbrugna...

EUVD-2015-8107

Malware in sbrugna...

SUSE CVE-2005-3624

The CCITTFaxStream::CCITTFaxStream function in Stream.cc for xpdf, gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others allows attackers to corrupt the heap via negative or large integers in a CCITTFaxDecode stream, which lead to integer overflows and integer underflows...

SUSE CVE-2007-5393

Heap-based buffer overflow in the CCITTFaxStream::lookChar method in xpdf/Stream.cc in Xpdf 3.02p11 allows remote attackers to execute arbitrary code via a PDF file that contains a crafted CCITTFaxDecode filter...

SUSE CVE-2013-1790

poppler/Stream.cc in poppler before 0.22.1 allows context-dependent attackers to have an unspecified impact via vectors that trigger a read of uninitialized memory by the CCITTFaxStream::lookChar function...

CVE-2022-45484

A vulnerability has been identified in JT2Go All versions V14.1.0.6, Teamcenter Visualization V13.2 All versions V13.2.0.12, Teamcenter Visualization V13.3 All versions V13.3.0.9, Teamcenter Visualization V13.3 All versions V13.3.0.8, Teamcenter Visualization V14.0 All versions V14.0.0.5,...

Modesty Pdf2json 缓冲区错误漏洞

PDF2JSON is a conversion library based on XPDF 3.02 that can be used to convert PDF pages page by page to JSON and XML formats. A denial of service vulnerability exists in the CCITTFaxStream::lookChar function in PDF2JSON version 0.70. The vulnerability stems from an invalid write of size 2. An...

Arbitrary Code Execution

libtiff is vulnerable to arbitrary code execution. A heap-based buffer overflow flaw was found in the way libtiff processed certain TIFF Internet Fax image files, compressed with the CCITT Group 4 compression algorithm. An attacker could use this flaw to create a specially-crafted TIFF file that,...

Xpdf 'CCITTFaxStream::readRow()' function stack buffer overflow vulnerability

Xpdf is Foo Labs developed an open source PDF reader , it supports decoding LZW compressed format files and read encrypted PDF files . A stack buffer overflow vulnerability exists in the 'CCITTFaxStream::readRow' function in the Stream.cc file in Xpdf version 4.00. A remote attacker can exploit...

UBUNTU-CVE-2018-18454

CCITTFaxStream::readRow in Stream.cc in Xpdf 4.00 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted pdf file, as demonstrated by pdftoppm...

PT-2018-14468 · Xpdf +2 · Xpdf +2

Name of the Vulnerable Software and Affected Versions: Xpdf version 4.00 Description: The issue allows remote attackers to cause a denial of service, specifically a heap-based buffer over-read, via a crafted pdf file. This is demonstrated by the use of pdftoppm, which exploits the...

CVE-2017-3011

Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have an exploitable integer overflow vulnerability in the CCITT fax PDF filter. Successful exploitation could lead to arbitrary code execution...

Integer overflow

Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have an exploitable integer overflow vulnerability in the CCITT fax PDF filter. Successful exploitation could lead to arbitrary code execution...

CVE-2017-3011

CVE-2017-3011 affects Adobe Acrobat Reader (versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier). The vulnerability is an exploitable integer overflow in the CCITT fax PDF filter that could lead to arbitrary code execution. The connected documents do not provide addit...

CVE-2017-3011

Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have an exploitable integer overflow vulnerability in the CCITT fax PDF filter. Successful exploitation could lead to arbitrary code execution...

Denial Of Service (DoS)

FFmpeg is vulnerable to denial of service DoS attacks and possibly other attacks. A malicious user can pass amalicious CCITT FAX data to the system that can cause an out-of-bounds array access that can cause the system to crash...

FreeBSD : ffmpeg -- multiple vulnerabilities (b0da85af-21a3-4c15-a137-fe9e4bc86002)

NVD reports : The updatedimensions function in libavcodec/vp8.c in FFmpeg through 2.8.1, as used in Google Chrome before 46.0.2490.71 and other products, relies on a coefficient-partition count during multi-threaded operation, which allows remote attackers to cause a denial of service race...

ffmpeg -- multiple vulnerabilities

NVD reports: The updatedimensions function in libavcodec/vp8.c in FFmpeg through 2.8.1, as used in Google Chrome before 46.0.2490.71 and other products, relies on a coefficient-partition count during multi-threaded operation, which allows remote attackers to cause a denial of service race conditi...

FFmpeg 'decode_uncompressed' function denial of service vulnerability

FFmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team. A security vulnerability exists in the 'decodeuncompressed' function in the libavcodec/faxcompr.c file in versions of FFmpeg prior to 2.8.2. As the program fails to validate the operation o...

CVE-2015-8218

The decodeuncompressed function in libavcodec/faxcompr.c in FFmpeg before 2.8.2 does not validate uncompressed runs, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via crafted CCITT FAX data...