302 matches found
[SECURITY] Fedora 12 Update: pdfedit-0.4.3-4.fc12
Free pdf editing using PdfEdit. Complete editing of pdf documents is made possible with PDFedit. You can change either raw pdf objects for advanced users or use predefined gui functions. Functions can be easily added as everything is based on a script...
[SECURITY] Fedora 11 Update: pdfedit-0.4.3-4.fc11
Free pdf editing using PdfEdit. Complete editing of pdf documents is made possible with PDFedit. You can change either raw pdf objects for advanced users or use predefined gui functions. Functions can be easily added as everything is based on a script...
US-CERT Technical Cyber Security Alert TA10-013A -- Adobe Reader and Acrobat Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 National Cyber Alert System Technical Cyber Security Alert TA10-013A Adobe Reader and Acrobat Vulnerabilities Original release date: Last revised: -- Source: US-CERT Systems Affected Adobe Reader and Acrobat 9.2 and earlier 9.x versions Adobe Reader a...
acroread: multiple code execution flaws (APSB10-02)
The U3D implementation in Adobe Reader and Acrobat 9.x before 9.3, 8.x before 8.2 on Windows and Mac OS X, and 7.x before 7.1.4 allows remote attackers to execute arbitrary code via malformed U3D data in a PDF document, related to a CLODProgressiveMeshDeclaration "array boundary issue," a differe...
Adobe Acrobat, Adobe Reader
Vulnerabilities that allow attackers to cause a denial of service memory corruption or possibly execute arbitrary code via unspecified vectors. Buffer overflow in Adobe Reader 9.0 and earlier, and Acrobat 9.0 and earlier, allows remote attackers to execute arbitrary code via a crafted PDF documen...
[USN-850-1] poppler vulnerabilities
=========================================================== Ubuntu Security Notice USN-850-1 October 21, 2009 poppler vulnerabilities CVE-2009-0755, CVE-2009-3603, CVE-2009-3604, CVE-2009-3605, CVE-2009-3607, CVE-2009-3608, CVE-2009-3609 ===========================================================...
xpdf/poppler: integer overflow in ObjectStream::ObjectStream (oCERT-2009-016)
Integer overflow in the ObjectStream::ObjectStream function in XRef.cc in Xpdf 3.x before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, CUPS pdftops, and teTeX, might allow remote attackers to execute arbitrary code via a crafted PDF document that triggers a heap-based...
acroread: Multiple arbitrary code execution fixes in 8.1.7 (APSB09-15)
The JavaScript for Acrobat API in Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 does not properly implement the 1 Privileged Context and 2 Safe Path restrictions for unspecified JavaScript methods, which allows remote attackers to create arbitrary files, and...
openSUSE 10 Security Update : xpdf (xpdf-6376)
Specially crafted PDF documents could crash xpdf or potentially even allow execution of arbitrary code CVE-2009-0791. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update xpdf-6376. The text...
SuSE 11 Security Update : xpdf (SAT Patch Number 1140)
Specially crafted PDF documents could crash xpdf or potentially even allow execution of arbitrary code. CVE-2009-0791 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself is...
openSUSE Security Update : xpdf (xpdf-1138)
Specially crafted PDF documents could crash xpdf or potentially even allow execution of arbitrary code CVE-2009-0791. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update xpdf-1138. The text...
FortiGuard Advisory: Adobe Reader/Acrobat TrueType Font Processing Memory Corruption Vulnerability
Adobe Reader/Acrobat TrueType Font Processing Memory Corruption Vulnerability 2009.June.10 Fortinet's FortiGuard Global Security Research Team Discovers Memory Corruption Vulnerability in Adobe Reader / Acrobat. Summary: ======== A memory corruption vulnerability exists when processing PDF...
Adobe Acrobat util.printf JavaScript function buffer overflow
Added: 11/10/2008 CVE: CVE-2008-2992 BID: 30035 OSVDB: 49520 Background Adobe Acrobat is software for creating PDF documents. Problem A buffer overflow vulnerability allows command execution when a user opens a PDF file which calls the util.printf JavaScript function with a specially crafted form...
Adobe Reader and Acrobat util.printf() JavaScript function stack buffer overflow
Overview Adobe Reader and Acrobat contain a stack buffer overflow in the util.printf JavaScript function, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Adobe Reader is software designed to view Portable Document Format PDF files...
CVE-2008-2950
The Page destructor in Page.cc in libpoppler in Poppler 0.8.4 and earlier deletes a pageWidgets object even if it is not initialized by a Page constructor, which allows remote attackers to execute arbitrary code via a crafted PDF document...
acroread Multiple buffer overflows
Multiple buffer overflows in Adobe Reader and Acrobat 8.1.1 and earlier allow remote attackers to execute arbitrary code via a PDF file with long arguments to unspecified JavaScript methods. NOTE: this issue might be subsumed by CVE-2008-0655...
US-CERT Technical Cyber Security Alert TA08-043A -- Adobe Reader and Acrobat Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 National Cyber Alert System Technical Cyber Security Alert TA08-043A Adobe Reader and Acrobat Vulnerabilities Original release date: February 12, 2008 Last revised: -- Source: US-CERT Systems Affected Adobe Reader version 8.1.1 and earlier Adobe Acrob...
Slackware 10.0 / 10.1 / 10.2 / 11.0 / 12.0 / 9.1 / current : xpdf/poppler/koffice/kdegraphics (SSA:2007-316-01)
New xpdf packages are available for Slackware 9.1, 10.0, 10.1, 10.2, 11.0, 12.0, and -current. New poppler packages are available for Slackware 12.0 and -current. New koffice packages are available for Slackware 11.0, 12.0, and -current. New kdegraphics packages are available for Slackware 10.2,...
DCTStream:: reset()
Integer overflow in the DCTStream::reset method in xpdf/Stream.cc in Xpdf 3.02p11 allows remote attackers to execute arbitrary code via a crafted PDF file, resulting in a heap-based buffer overflow...
DSA-1091-1 tiff - buffer overflows
Bulletin has no description...