JVN/CVE Demo: Cveinfos

CVE

Id: 14828
CVE No.: CVE-2005-3624
Status: Candidate
Description: The CCITTFaxStream::CCITTFaxStream function in Stream.cc for xpdf, gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others allows attackers to corrupt the heap via negative or large integers in a CCITTFaxDecode stream, which lead to integer overflows and integer underflows.
Phase: Assigned (20051116)
Votes: None (candidate not yet proposed)
Comments

Actions

Related CVE References

Id	CVE Id	CVE No.	Reference	Actions
113640	14828	CVE-2005-3624	MISC:http://scary.beasts.org/security/CESA-2005-003.txt	View
113641	14828	CVE-2005-3624	CONFIRM:http://www.kde.org/info/security/advisory-20051207-2.txt	View
113642	14828	CVE-2005-3624	DEBIAN:DSA-931	View
113643	14828	CVE-2005-3624	URL:http://www.debian.org/security/2005/dsa-931	View
113644	14828	CVE-2005-3624	DEBIAN:DSA-932	View
113645	14828	CVE-2005-3624	URL:http://www.debian.org/security/2005/dsa-932	View
113646	14828	CVE-2005-3624	DEBIAN:DSA-937	View
113647	14828	CVE-2005-3624	URL:http://www.debian.org/security/2005/dsa-937	View
113648	14828	CVE-2005-3624	DEBIAN:DSA-938	View
113649	14828	CVE-2005-3624	URL:http://www.debian.org/security/2005/dsa-938	View
113650	14828	CVE-2005-3624	DEBIAN:DSA-940	View
113651	14828	CVE-2005-3624	URL:http://www.debian.org/security/2005/dsa-940	View
113652	14828	CVE-2005-3624	DEBIAN:DSA-936	View
113653	14828	CVE-2005-3624	URL:http://www.debian.org/security/2006/dsa-936	View
113654	14828	CVE-2005-3624	DEBIAN:DSA-950	View
113655	14828	CVE-2005-3624	URL:http://www.debian.org/security/2006/dsa-950	View
113656	14828	CVE-2005-3624	DEBIAN:DSA-961	View
113657	14828	CVE-2005-3624	URL:http://www.debian.org/security/2006/dsa-961	View
113658	14828	CVE-2005-3624	DEBIAN:DSA-962	View
113659	14828	CVE-2005-3624	URL:http://www.debian.org/security/2006/dsa-962	View
113660	14828	CVE-2005-3624	FEDORA:FLSA:175404	View
113661	14828	CVE-2005-3624	URL:http://www.securityfocus.com/archive/1/archive/1/427990/100/0/threaded	View
113662	14828	CVE-2005-3624	FEDORA:FEDORA-2005-025	View
113663	14828	CVE-2005-3624	URL:http://www.redhat.com/archives/fedora-announce-list/2006-January/msg00030.html	View
113664	14828	CVE-2005-3624	FEDORA:FEDORA-2005-026	View
113665	14828	CVE-2005-3624	URL:http://www.redhat.com/archives/fedora-announce-list/2006-January/msg00031.html	View
113666	14828	CVE-2005-3624	FEDORA:FLSA-2006:176751	View
113667	14828	CVE-2005-3624	URL:http://www.securityfocus.com/archive/1/archive/1/427053/100/0/threaded	View
113668	14828	CVE-2005-3624	GENTOO:GLSA-200601-02	View
113669	14828	CVE-2005-3624	URL:http://www.gentoo.org/security/en/glsa/glsa-200601-02.xml	View
113670	14828	CVE-2005-3624	GENTOO:GLSA-200601-17	View
113671	14828	CVE-2005-3624	URL:http://www.gentoo.org/security/en/glsa/glsa-200601-17.xml	View
113672	14828	CVE-2005-3624	MANDRAKE:MDKSA-2006:010	View
113673	14828	CVE-2005-3624	URL:http://www.mandriva.com/security/advisories?name=MDKSA-2006:010	View
113674	14828	CVE-2005-3624	MANDRIVA:MDKSA-2006:003	View
113675	14828	CVE-2005-3624	URL:http://www.mandriva.com/security/advisories?name=MDKSA-2006:003	View
113676	14828	CVE-2005-3624	MANDRIVA:MDKSA-2006:004	View
113677	14828	CVE-2005-3624	URL:http://www.mandriva.com/security/advisories?name=MDKSA-2006:004	View
113678	14828	CVE-2005-3624	MANDRIVA:MDKSA-2006:005	View
113679	14828	CVE-2005-3624	URL:http://www.mandriva.com/security/advisories?name=MDKSA-2006:005	View
113680	14828	CVE-2005-3624	MANDRIVA:MDKSA-2006:006	View
113681	14828	CVE-2005-3624	URL:http://www.mandriva.com/security/advisories?name=MDKSA-2006:006	View
113682	14828	CVE-2005-3624	MANDRIVA:MDKSA-2006:008	View
113683	14828	CVE-2005-3624	URL:http://www.mandriva.com/security/advisories?name=MDKSA-2006:008	View
113684	14828	CVE-2005-3624	MANDRIVA:MDKSA-2006:012	View
113685	14828	CVE-2005-3624	URL:http://www.mandriva.com/security/advisories?name=MDKSA-2006:012	View
113686	14828	CVE-2005-3624	MANDRIVA:MDKSA-2006:011	View
113687	14828	CVE-2005-3624	URL:http://www.mandriva.com/security/advisories?name=MDKSA-2006:011	View
113688	14828	CVE-2005-3624	REDHAT:RHSA-2006:0177	View
113689	14828	CVE-2005-3624	URL:http://rhn.redhat.com/errata/RHSA-2006-0177.html	View
113690	14828	CVE-2005-3624	REDHAT:RHSA-2006:0160	View
113691	14828	CVE-2005-3624	URL:http://www.redhat.com/support/errata/RHSA-2006-0160.html	View
113692	14828	CVE-2005-3624	REDHAT:RHSA-2006:0163	View
113693	14828	CVE-2005-3624	URL:http://www.redhat.com/support/errata/RHSA-2006-0163.html	View
113694	14828	CVE-2005-3624	SCO:SCOSA-2006.15	View
113695	14828	CVE-2005-3624	URL:ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.15/SCOSA-2006.15.txt	View
113696	14828	CVE-2005-3624	SGI:20051201-01-U	View
113697	14828	CVE-2005-3624	URL:ftp://patches.sgi.com/support/free/security/advisories/20051201-01-U	View
113698	14828	CVE-2005-3624	SGI:20060101-01-U	View
113699	14828	CVE-2005-3624	URL:ftp://patches.sgi.com/support/free/security/advisories/20060101-01-U	View
113700	14828	CVE-2005-3624	SGI:20060201-01-U	View
113701	14828	CVE-2005-3624	URL:ftp://patches.sgi.com/support/free/security/advisories/20060201-01-U	View
113702	14828	CVE-2005-3624	SLACKWARE:SSA:2006-045-04	View
113703	14828	CVE-2005-3624	URL:http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.474747	View
113704	14828	CVE-2005-3624	SLACKWARE:SSA:2006-045-09	View
113705	14828	CVE-2005-3624	URL:http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.472683	View
113706	14828	CVE-2005-3624	SUNALERT:102972	View
113707	14828	CVE-2005-3624	URL:http://sunsolve.sun.com/search/document.do?assetkey=1-26-102972-1	View
113708	14828	CVE-2005-3624	SUSE:SUSE-SA:2006:001	View
113709	14828	CVE-2005-3624	URL:http://lists.suse.com/archive/suse-security-announce/2006-Jan/0001.html	View
113710	14828	CVE-2005-3624	TRUSTIX:2006-0002	View
113711	14828	CVE-2005-3624	URL:http://www.trustix.org/errata/2006/0002/	View
113712	14828	CVE-2005-3624	UBUNTU:USN-236-1	View
113713	14828	CVE-2005-3624	URL:http://www.ubuntulinux.org/support/documentation/usn/usn-236-1	View
113714	14828	CVE-2005-3624	BID:16143	View
113715	14828	CVE-2005-3624	URL:http://www.securityfocus.com/bid/16143	View
113716	14828	CVE-2005-3624	OVAL:oval:org.mitre.oval:def:9437	View
113717	14828	CVE-2005-3624	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:9437	View
113718	14828	CVE-2005-3624	VUPEN:ADV-2006-0047	View
113719	14828	CVE-2005-3624	URL:http://www.vupen.com/english/advisories/2006/0047	View
113720	14828	CVE-2005-3624	VUPEN:ADV-2007-2280	View
113721	14828	CVE-2005-3624	URL:http://www.vupen.com/english/advisories/2007/2280	View
113722	14828	CVE-2005-3624	SECUNIA:18303	View
113723	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18303	View
113724	14828	CVE-2005-3624	SECUNIA:18312	View
113725	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18312	View
113726	14828	CVE-2005-3624	SECUNIA:18313	View
113727	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18313	View
113728	14828	CVE-2005-3624	SECUNIA:18329	View
113729	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18329	View
113730	14828	CVE-2005-3624	SECUNIA:18332	View
113731	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18332	View
113732	14828	CVE-2005-3624	SECUNIA:18334	View
113733	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18334	View
113734	14828	CVE-2005-3624	SECUNIA:18387	View
113735	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18387	View
113736	14828	CVE-2005-3624	SECUNIA:18416	View
113737	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18416	View
113738	14828	CVE-2005-3624	SECUNIA:18338	View
113739	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18338	View
113740	14828	CVE-2005-3624	SECUNIA:18349	View
113741	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18349	View
113742	14828	CVE-2005-3624	SECUNIA:18375	View
113743	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18375	View
113744	14828	CVE-2005-3624	SECUNIA:18385	View
113745	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18385	View
113746	14828	CVE-2005-3624	SECUNIA:18389	View
113747	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18389	View
113748	14828	CVE-2005-3624	SECUNIA:18423	View
113749	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18423	View
113750	14828	CVE-2005-3624	SECUNIA:18448	View
113751	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18448	View
113752	14828	CVE-2005-3624	SECUNIA:18398	View
113753	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18398	View
113754	14828	CVE-2005-3624	SECUNIA:18407	View
113755	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18407	View
113756	14828	CVE-2005-3624	SECUNIA:18534	View
113757	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18534	View
113758	14828	CVE-2005-3624	SECUNIA:18582	View
113759	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18582	View
113760	14828	CVE-2005-3624	SECUNIA:18517	View
113761	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18517	View
113762	14828	CVE-2005-3624	SECUNIA:18554	View
113763	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18554	View
113764	14828	CVE-2005-3624	SECUNIA:18642	View
113765	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18642	View
113766	14828	CVE-2005-3624	SECUNIA:18644	View
113767	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18644	View
113768	14828	CVE-2005-3624	SECUNIA:18674	View
113769	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18674	View
113770	14828	CVE-2005-3624	SECUNIA:18675	View
113771	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18675	View
113772	14828	CVE-2005-3624	SECUNIA:18679	View
113773	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18679	View
113774	14828	CVE-2005-3624	SECUNIA:18908	View
113775	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18908	View
113776	14828	CVE-2005-3624	SECUNIA:18913	View
113777	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18913	View
113778	14828	CVE-2005-3624	SECUNIA:19230	View
113779	14828	CVE-2005-3624	URL:http://secunia.com/advisories/19230	View
113780	14828	CVE-2005-3624	SECUNIA:19377	View
113781	14828	CVE-2005-3624	URL:http://secunia.com/advisories/19377	View
113782	14828	CVE-2005-3624	SECUNIA:18425	View
113783	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18425	View
113784	14828	CVE-2005-3624	SECUNIA:18463	View
113785	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18463	View
113786	14828	CVE-2005-3624	SECUNIA:18147	View
113787	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18147	View
113788	14828	CVE-2005-3624	SECUNIA:18373	View
113789	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18373	View
113790	14828	CVE-2005-3624	SECUNIA:18380	View
113791	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18380	View
113792	14828	CVE-2005-3624	SECUNIA:18414	View
113793	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18414	View
113794	14828	CVE-2005-3624	SECUNIA:18428	View
113795	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18428	View
113796	14828	CVE-2005-3624	SECUNIA:18436	View
113797	14828	CVE-2005-3624	URL:http://secunia.com/advisories/18436	View
113798	14828	CVE-2005-3624	SECUNIA:25729	View
113799	14828	CVE-2005-3624	URL:http://secunia.com/advisories/25729	View
113800	14828	CVE-2005-3624	XF:xpdf-ccitt-faxstream-bo(24022)	View

Related JVN

Id	JVN No.	Title	Summary	CVE No.	CVE Id	CVSS_v2	CVSS_v3	JVN URL	Actions
57807	JVNDB-2006-000003	Xpdf における不正な FlateDecode ストリームによる Null ポインタデリファレンスの脆弱性	Xpdf には意図的に作成された FlateDecode ストリームを処理した場合に Null ポインタデリファレンスが発生する問題が存在します。	CVE-2005-3626	14828	5		http://jvndb.jvn.jp/ja/contents/2006/JVNDB-2006-000003.html	View

Message	Memory use
Component initialization	1.39 MB
Controller action start	1.49 MB
Controller render start	2.52 MB
View render complete	3.19 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	2.69
Event: Controller.initialize	0.02
Event: Controller.startup	0.06
Controller action	440.43
Event: Controller.beforeRender	5.38
» Processing toolbar data	5.28
Rendering View	47.03
» Event: View.beforeRender	0.02
» Rendering APP/View/Cveinfos/view.ctp	45.80
» Event: View.afterRender	0.02
» Event: View.beforeLayout	0.02
» Rendering APP/View/Layouts/default.ctp	0.75
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	0.20
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/cveinfos/view/14828
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/cveinfos/view/14828
Remote Port	27013
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	216.73.216.45
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Connection	close
Http Cache Control	max-age=259200
Http X Forwarded For	10.1.48.224
Http Via	1.1 squid-proxy-5b5d847c96-vhg9g (squid/6.10)
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
X Dostranslated Ip	216.73.216.45
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	216.73.216.45
Unique Id	aLUOyqCbda_7y0ykiYqbGgAAAZI
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect X Dostranslated Ip	216.73.216.45
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	216.73.216.45
Redirect Unique Id	aLUOyqCbda_7y0ykiYqbGgAAAZI
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect X Dostranslated Ip	216.73.216.45
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	216.73.216.45
Redirect Redirect Unique Id	aLUOyqCbda_7y0ykiYqbGgAAAZI
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1756696266.3286
Request Time	1756696266

CVE

Actions

Related CVE References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files