Lucene search
UbuntuUSN-603-1HistoryApr 17, 2008 - 12:00 a.m.
poppler vulnerability
2008-04-1700:00:00
ubuntu.com
23
6.8 Medium
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.131 Low
EPSS
Percentile
95.5%
Releases
- Ubuntu 7.10
- Ubuntu 7.04
- Ubuntu 6.10
- Ubuntu 6.06
Packages
- poppler -
Details
It was discovered that the poppler PDF library did not correctly handle
certain malformed embedded fonts. If a user or an automated system were
tricked into opening a malicious PDF, a remote attacker could execute
arbitrary code with user privileges.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 7.10 | noarch | libpoppler2 | <ย 0.6-0ubuntu2.2 | UNKNOWN |
| Ubuntu | 7.10 | noarch | libpoppler-dev | <ย 0.6-0ubuntu2.2 | UNKNOWN |
| Ubuntu | 7.10 | noarch | libpoppler-glib-dev | <ย 0.6-0ubuntu2.2 | UNKNOWN |
| Ubuntu | 7.10 | noarch | libpoppler-glib2 | <ย 0.6-0ubuntu2.2 | UNKNOWN |
| Ubuntu | 7.10 | noarch | libpoppler-qt-dev | <ย 0.6-0ubuntu2.2 | UNKNOWN |
| Ubuntu | 7.10 | noarch | libpoppler-qt2 | <ย 0.6-0ubuntu2.2 | UNKNOWN |
| Ubuntu | 7.10 | noarch | libpoppler-qt4-2 | <ย 0.6-0ubuntu2.2 | UNKNOWN |
| Ubuntu | 7.10 | noarch | libpoppler-qt4-dev | <ย 0.6-0ubuntu2.2 | UNKNOWN |
| Ubuntu | 7.10 | noarch | poppler-utils | <ย 0.6-0ubuntu2.2 | UNKNOWN |
| Ubuntu | 7.04 | noarch | libpoppler1 | <ย 0.5.4-0ubuntu8.3 | UNKNOWN |
References
Related
openvas
openvas
Debian Security Advisory DSA 1548-1 (xpdf)
2008-04-21 00:00:00
Ubuntu Update for poppler vulnerability USN-603-1
2009-03-23 00:00:00
Mandriva Update for koffice MDVSA-2008:197 (koffice)
2009-04-09 00:00:00
redhat
redhat
(RHSA-2008:0239) Important: poppler security update
2008-04-17 00:00:00
(RHSA-2008:0262) Important: gpdf security update
2008-05-08 00:00:00
(RHSA-2008:0238) Important: kdegraphics security update
2008-04-17 00:00:00
debian
debian
[SECURITY] [DSA 1548-1] New xpdf packages fix arbitrary code exitution
2008-04-17 17:08:44
[SECURITY] [DSA 1548-1] New xpdf packages fix arbitrary code exitution
2008-04-17 17:08:44
nessus
nessus
CentOS 4 : kdegraphics (CESA-2008:0238)
2008-04-22 00:00:00
Scientific Linux Security Update : xpdf on SL4.x i386/x86_64
2012-08-01 00:00:00
GLSA-200804-18 : Poppler: User-assisted execution of arbitrary code
2008-04-22 00:00:00
debiancve
debiancve
CVE-2008-1693
2008-04-18 15:05:00
ubuntu
ubuntu
KOffice vulnerability
2008-04-17 00:00:00
osv
osv
poppler - execution of arbitrary code
2008-07-09 00:00:00
xpdf
2008-04-17 00:00:00
oraclelinux
oraclelinux
kdegraphics security update
2008-04-17 00:00:00
xpdf security update
2008-04-17 00:00:00
poppler security update
2008-04-17 00:00:00
centos
centos
kdegraphics security update
2008-04-20 14:15:40
xpdf security update
2008-04-20 14:17:25
poppler security update
2008-04-21 15:50:27
seebug
seebug
Xpdfๅตๅ
ฅๅญไฝๅค็ไปฃ็ ๆง่กๆผๆด
2008-04-23 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:21:48
cve
cve
CVE-2008-1693
2008-04-18 15:05:00
gentoo
gentoo
Poppler: User-assisted execution of arbitrary code
2008-04-17 00:00:00
securityvulns
securityvulns
[ GLSA 200804-18 ] Poppler: User-assisted execution of arbitrary code
2008-04-17 00:00:00
XPDF / Poppler uninitialized pointer dereference
2008-04-17 00:00:00
prion
prion
Design/Logic Flaw
2008-04-18 15:05:00
ubuntucve
ubuntucve
CVE-2008-1693
2008-04-18 00:00:00
fedora
fedora
[SECURITY] Fedora 7 Update: poppler-0.5.4-9.fc7
2008-04-29 20:50:56
6.8 Medium
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.131 Low
EPSS
Percentile
95.5%
Related for USN-603-1