JVN/CVE Demo: Cveinfos

CVE

Id: 16405
CVE No.: CVE-2006-0301
Status: Candidate
Description: Heap-based buffer overflow in Splash.cc in xpdf, as used in other products such as (1) poppler, (2) kdegraphics, (3) gpdf, (4) pdfkit.framework, and others, allows attackers to cause a denial of service and possibly execute arbitrary code via crafted splash images that produce certain values that exceed the width or height of the associated bitmap.
Phase: Assigned (20060118)
Votes: None (candidate not yet proposed)
Comments

Actions

Related CVE References

Id	CVE Id	CVE No.	Reference	Actions
131395	16405	CVE-2006-0301	MISC:https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=179046	View
131396	16405	CVE-2006-0301	CONFIRM:https://bugzilla.novell.com/show_bug.cgi?id=141242	View
131397	16405	CVE-2006-0301	BUGTRAQ:20060202 [KDE Security Advisory] kpdf/xpdf heap based buffer overflow	View
131398	16405	CVE-2006-0301	URL:http://www.securityfocus.com/archive/1/423899/100/0/threaded	View
131399	16405	CVE-2006-0301	MISC:http://www.kde.org/info/security/advisory-20060202-1.txt	View
131400	16405	CVE-2006-0301	DEBIAN:DSA-971	View
131401	16405	CVE-2006-0301	URL:http://www.debian.org/security/2006/dsa-971	View
131402	16405	CVE-2006-0301	DEBIAN:DSA-974	View
131403	16405	CVE-2006-0301	URL:http://www.debian.org/security/2006/dsa-974	View
131404	16405	CVE-2006-0301	DEBIAN:DSA-972	View
131405	16405	CVE-2006-0301	URL:http://www.debian.org/security/2006/dsa-972	View
131406	16405	CVE-2006-0301	FEDORA:FLSA:175404	View
131407	16405	CVE-2006-0301	URL:http://www.securityfocus.com/archive/1/archive/1/427990/100/0/threaded	View
131408	16405	CVE-2006-0301	FEDORA:FEDORA-2006-103	View
131409	16405	CVE-2006-0301	URL:http://www.redhat.com/archives/fedora-announce-list/2006-February/msg00039.html	View
131410	16405	CVE-2006-0301	GENTOO:GLSA-200602-04	View
131411	16405	CVE-2006-0301	URL:http://www.gentoo.org/security/en/glsa/glsa-200602-04.xml	View
131412	16405	CVE-2006-0301	GENTOO:GLSA-200602-05	View
131413	16405	CVE-2006-0301	URL:http://www.gentoo.org/security/en/glsa/glsa-200602-05.xml	View
131414	16405	CVE-2006-0301	GENTOO:GLSA-200602-12	View
131415	16405	CVE-2006-0301	URL:http://www.gentoo.org/security/en/glsa/glsa-200602-12.xml	View
131416	16405	CVE-2006-0301	MANDRIVA:MDKSA-2006:030	View
131417	16405	CVE-2006-0301	URL:http://www.mandriva.com/security/advisories?name=MDKSA-2006:030	View
131418	16405	CVE-2006-0301	MANDRIVA:MDKSA-2006:031	View
131419	16405	CVE-2006-0301	URL:http://www.mandriva.com/security/advisories?name=MDKSA-2006:031	View
131420	16405	CVE-2006-0301	MANDRIVA:MDKSA-2006:032	View
131421	16405	CVE-2006-0301	URL:http://www.mandriva.com/security/advisories?name=MDKSA-2006:032	View
131422	16405	CVE-2006-0301	REDHAT:RHSA-2006:0201	View
131423	16405	CVE-2006-0301	URL:http://www.redhat.com/support/errata/RHSA-2006-0201.html	View
131424	16405	CVE-2006-0301	REDHAT:RHSA-2006:0206	View
131425	16405	CVE-2006-0301	URL:http://rhn.redhat.com/errata/RHSA-2006-0206.html	View
131426	16405	CVE-2006-0301	SCO:SCOSA-2006.15	View
131427	16405	CVE-2006-0301	URL:ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.15/SCOSA-2006.15.txt	View
131428	16405	CVE-2006-0301	SLACKWARE:SSA:2006-045-04	View
131429	16405	CVE-2006-0301	URL:http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.474747	View
131430	16405	CVE-2006-0301	SLACKWARE:SSA:2006-045-09	View
131431	16405	CVE-2006-0301	URL:http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.472683	View
131432	16405	CVE-2006-0301	UBUNTU:USN-249-1	View
131433	16405	CVE-2006-0301	URL:http://www.ubuntu.com/usn/usn-249-1	View
131434	16405	CVE-2006-0301	OVAL:oval:org.mitre.oval:def:10850	View
131435	16405	CVE-2006-0301	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10850	View
131436	16405	CVE-2006-0301	VUPEN:ADV-2006-0389	View
131437	16405	CVE-2006-0301	URL:http://www.vupen.com/english/advisories/2006/0389	View
131438	16405	CVE-2006-0301	VUPEN:ADV-2006-0422	View
131439	16405	CVE-2006-0301	URL:http://www.vupen.com/english/advisories/2006/0422	View
131440	16405	CVE-2006-0301	SECTRACK:1015576	View
131441	16405	CVE-2006-0301	URL:http://securitytracker.com/id?1015576	View
131442	16405	CVE-2006-0301	SECUNIA:18677	View
131443	16405	CVE-2006-0301	URL:http://secunia.com/advisories/18677	View
131444	16405	CVE-2006-0301	SECUNIA:18707	View
131445	16405	CVE-2006-0301	URL:http://secunia.com/advisories/18707	View
131446	16405	CVE-2006-0301	SECUNIA:18834	View
131447	16405	CVE-2006-0301	URL:http://secunia.com/advisories/18834	View
131448	16405	CVE-2006-0301	SECUNIA:18875	View
131449	16405	CVE-2006-0301	URL:http://secunia.com/advisories/18875	View
131450	16405	CVE-2006-0301	SECUNIA:18274	View
131451	16405	CVE-2006-0301	URL:http://secunia.com/advisories/18274	View
131452	16405	CVE-2006-0301	SECUNIA:18825	View
131453	16405	CVE-2006-0301	URL:http://secunia.com/advisories/18825	View
131454	16405	CVE-2006-0301	SECUNIA:18826	View
131455	16405	CVE-2006-0301	URL:http://secunia.com/advisories/18826	View
131456	16405	CVE-2006-0301	SECUNIA:18837	View
131457	16405	CVE-2006-0301	URL:http://secunia.com/advisories/18837	View
131458	16405	CVE-2006-0301	SECUNIA:18838	View
131459	16405	CVE-2006-0301	URL:http://secunia.com/advisories/18838	View
131460	16405	CVE-2006-0301	SECUNIA:18860	View
131461	16405	CVE-2006-0301	URL:http://secunia.com/advisories/18860	View
131462	16405	CVE-2006-0301	SECUNIA:18862	View
131463	16405	CVE-2006-0301	URL:http://secunia.com/advisories/18862	View
131464	16405	CVE-2006-0301	SECUNIA:18864	View
131465	16405	CVE-2006-0301	URL:http://secunia.com/advisories/18864	View
131466	16405	CVE-2006-0301	SECUNIA:18882	View
131467	16405	CVE-2006-0301	URL:http://secunia.com/advisories/18882	View
131468	16405	CVE-2006-0301	SECUNIA:18908	View
131469	16405	CVE-2006-0301	URL:http://secunia.com/advisories/18908	View
131470	16405	CVE-2006-0301	SECUNIA:18913	View
131471	16405	CVE-2006-0301	URL:http://secunia.com/advisories/18913	View
131472	16405	CVE-2006-0301	SECUNIA:18983	View
131473	16405	CVE-2006-0301	URL:http://secunia.com/advisories/18983	View
131474	16405	CVE-2006-0301	SECUNIA:19377	View
131475	16405	CVE-2006-0301	URL:http://secunia.com/advisories/19377	View
131476	16405	CVE-2006-0301	SECUNIA:18839	View
131477	16405	CVE-2006-0301	URL:http://secunia.com/advisories/18839	View
131478	16405	CVE-2006-0301	SREASON:470	View
131479	16405	CVE-2006-0301	URL:http://securityreason.com/securityalert/470	View
131480	16405	CVE-2006-0301	XF:xpdf-splash-bo(24391)	View

Message	Memory use
Component initialization	1.39 MB
Controller action start	1.49 MB
Controller render start	2.39 MB
View render complete	2.93 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	2.79
Event: Controller.initialize	0.02
Event: Controller.startup	0.06
Controller action	429.82
Event: Controller.beforeRender	5.47
» Processing toolbar data	5.37
Rendering View	25.95
» Event: View.beforeRender	0.02
» Rendering APP/View/Cveinfos/view.ctp	24.76
» Event: View.afterRender	0.02
» Event: View.beforeLayout	0.02
» Rendering APP/View/Layouts/default.ctp	0.71
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	0.10
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/cveinfos/view/16405
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/cveinfos/view/16405
Remote Port	20731
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	216.73.216.223
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Connection	close
Http Cache Control	max-age=259200
Http X Forwarded For	10.1.148.26
Http Via	1.1 squid-proxy-5b5d847c96-7f7gz (squid/6.13)
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Suspectdos	1
X Dostranslated Ip	216.73.216.223
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	216.73.216.223
Unique Id	aOHgSQybNT3tQhsd26BJ9QAAAfQ
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Suspectdos	1
Redirect X Dostranslated Ip	216.73.216.223
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	216.73.216.223
Redirect Unique Id	aOHgSQybNT3tQhsd26BJ9QAAAfQ
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect Suspectdos	1
Redirect Redirect X Dostranslated Ip	216.73.216.223
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	216.73.216.223
Redirect Redirect Unique Id	aOHgSQybNT3tQhsd26BJ9QAAAfQ
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1759633481.7879
Request Time	1759633481

CVE

Actions

Related CVE References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files