CVE-2009-3607

2009-10-2100:00:00

ubuntu.com

8.2 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.049 Low

EPSS

Percentile

92.7%

JSON

Integer overflow in the create_surface_from_thumbnail_data function in
glib/poppler-page.cc in Poppler 0.x allows remote attackers to cause a
denial of service (memory corruption) or possibly execute arbitrary code
via a crafted PDF document that triggers a heap-based buffer overflow.
NOTE: some of these details are obtained from third party information.

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchpoppler< 0.5.1-0ubuntu7.6UNKNOWN
ubuntu8.04noarchpoppler< 0.6.4-1ubuntu3.3UNKNOWN
ubuntu8.10noarchpoppler< 0.8.7-1ubuntu0.4UNKNOWN
ubuntu9.04noarchpoppler< 0.10.5-1ubuntu2.4UNKNOWN
ubuntu9.10noarchpoppler< 0.12.0-0ubuntu2.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	6.06	noarch	poppler	< 0.5.1-0ubuntu7.6	UNKNOWN
ubuntu	8.04	noarch	poppler	< 0.6.4-1ubuntu3.3	UNKNOWN
ubuntu	8.10	noarch	poppler	< 0.8.7-1ubuntu0.4	UNKNOWN
ubuntu	9.04	noarch	poppler	< 0.10.5-1ubuntu2.4	UNKNOWN
ubuntu	9.10	noarch	poppler	< 0.12.0-0ubuntu2.1	UNKNOWN