JVN/CVE Demo: Cveinfos

CVE

Id: 9553
CVE No.: CVE-2004-1125
Status: Candidate
Description: Buffer overflow in the Gfx::doImage function in Gfx.cc for xpdf 3.00, and other products that share code such as tetex-bin and kpdf in KDE 3.2.x to 3.2.3 and 3.3.x to 3.3.2, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted PDF file that causes the boundaries of a maskColors array to be exceeded.
Phase: Assigned (20041202)
Votes: None (candidate not yet proposed)
Comments

Actions

Related CVE References

Id	CVE Id	CVE No.	Reference	Actions
64687	9553	CVE-2004-1125	IDEFENSE:20041221 Multiple Vendor xpdf PDF Viewer Buffer Overflow Vulnerability	View
64688	9553	CVE-2004-1125	URL:http://www.idefense.com/application/poi/display?id=172&type=vulnerabilities	View
64689	9553	CVE-2004-1125	CONFIRM:ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.00pl2.patch	View
64690	9553	CVE-2004-1125	CONFIRM:http://www.kde.org/info/security/advisory-20041223-1.txt	View
64691	9553	CVE-2004-1125	BUGTRAQ:20041228 KDE Security Advisory: kpdf Buffer Overflow Vulnerability	View
64692	9553	CVE-2004-1125	URL:http://marc.info/?t=110378596500001&r=1&w=2	View
64693	9553	CVE-2004-1125	FULLDISC:20041223 [USN-48-1] xpdf, tetex-bin vulnerabilities	View
64694	9553	CVE-2004-1125	URL:http://lists.grok.org.uk/pipermail/full-disclosure/2004-December/030241.html	View
64695	9553	CVE-2004-1125	CONECTIVA:CLA-2005:921	View
64696	9553	CVE-2004-1125	URL:http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000921	View
64697	9553	CVE-2004-1125	FEDORA:FLSA:2353	View
64698	9553	CVE-2004-1125	URL:https://bugzilla.fedora.us/show_bug.cgi?id=2353	View
64699	9553	CVE-2004-1125	FEDORA:FLSA:2352	View
64700	9553	CVE-2004-1125	URL:https://bugzilla.fedora.us/show_bug.cgi?id=2352	View
64701	9553	CVE-2004-1125	GENTOO:GLSA-200412-25	View
64702	9553	CVE-2004-1125	URL:http://www.gentoo.org/security/en/glsa/glsa-200412-25.xml	View
64703	9553	CVE-2004-1125	GENTOO:GLSA-200501-13	View
64704	9553	CVE-2004-1125	URL:http://www.gentoo.org/security/en/glsa/glsa-200501-13.xml	View
64705	9553	CVE-2004-1125	GENTOO:GLSA-200501-17	View
64706	9553	CVE-2004-1125	URL:http://www.gentoo.org/security/en/glsa/glsa-200501-17.xml	View
64707	9553	CVE-2004-1125	REDHAT:RHSA-2005:013	View
64708	9553	CVE-2004-1125	URL:http://www.redhat.com/support/errata/RHSA-2005-013.html	View
64709	9553	CVE-2004-1125	REDHAT:RHSA-2005:018	View
64710	9553	CVE-2004-1125	URL:http://www.redhat.com/support/errata/RHSA-2005-018.html	View
64711	9553	CVE-2004-1125	REDHAT:RHSA-2005:034	View
64712	9553	CVE-2004-1125	URL:http://www.redhat.com/support/errata/RHSA-2005-034.html	View
64713	9553	CVE-2004-1125	REDHAT:RHSA-2005:053	View
64714	9553	CVE-2004-1125	URL:http://www.redhat.com/support/errata/RHSA-2005-053.html	View
64715	9553	CVE-2004-1125	REDHAT:RHSA-2005:057	View
64716	9553	CVE-2004-1125	URL:http://www.redhat.com/support/errata/RHSA-2005-057.html	View
64717	9553	CVE-2004-1125	REDHAT:RHSA-2005:066	View
64718	9553	CVE-2004-1125	URL:http://www.redhat.com/support/errata/RHSA-2005-066.html	View
64719	9553	CVE-2004-1125	REDHAT:RHSA-2005:354	View
64720	9553	CVE-2004-1125	URL:http://www.redhat.com/support/errata/RHSA-2005-354.html	View
64721	9553	CVE-2004-1125	REDHAT:RHSA-2005:026	View
64722	9553	CVE-2004-1125	URL:http://www.redhat.com/support/errata/RHSA-2005-026.html	View
64723	9553	CVE-2004-1125	SCO:SCOSA-2005.42	View
64724	9553	CVE-2004-1125	URL:ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.42/SCOSA-2005.42.txt	View
64725	9553	CVE-2004-1125	SUSE:SUSE-SR:2005:001	View
64726	9553	CVE-2004-1125	URL:http://www.novell.com/linux/security/advisories/2005_01_sr.html	View
64727	9553	CVE-2004-1125	UBUNTU:USN-50-1	View
64728	9553	CVE-2004-1125	URL:http://www.ubuntulinux.org/support/documentation/usn/usn-50-1	View
64729	9553	CVE-2004-1125	BID:12070	View
64730	9553	CVE-2004-1125	URL:http://www.securityfocus.com/bid/12070	View
64731	9553	CVE-2004-1125	OVAL:oval:org.mitre.oval:def:10830	View
64732	9553	CVE-2004-1125	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10830	View
64733	9553	CVE-2004-1125	SECTRACK:1012646	View
64734	9553	CVE-2004-1125	URL:http://securitytracker.com/id?1012646	View
64735	9553	CVE-2004-1125	SECUNIA:17277	View
64736	9553	CVE-2004-1125	URL:http://secunia.com/advisories/17277	View
64737	9553	CVE-2004-1125	XF:xpdf-gfx-doimage-bo(18641)	View

Message	Memory use
Component initialization	1.39 MB
Controller action start	1.49 MB
Controller render start	2.33 MB
View render complete	2.81 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	2.64
Event: Controller.initialize	0.02
Event: Controller.startup	0.06
Controller action	428.27
Event: Controller.beforeRender	4.37
» Processing toolbar data	4.28
Rendering View	23.80
» Event: View.beforeRender	0.02
» Rendering APP/View/Cveinfos/view.ctp	22.60
» Event: View.afterRender	0.02
» Event: View.beforeLayout	0.02
» Rendering APP/View/Layouts/default.ctp	0.71
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	0.11
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/cveinfos/view/9553
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/cveinfos/view/9553
Remote Port	25228
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	216.73.216.113
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Connection	close
Http Cache Control	max-age=259200
Http X Forwarded For	10.1.6.152
Http Via	1.1 squid-proxy-5b5d847c96-tbwbh (squid/6.13)
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Suspectharddos	1
Suspectdos	1
X Dostranslated Ip	216.73.216.113
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	216.73.216.113
Unique Id	aSl-TtN75i9hIGWqh4LU4wAAASc
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Suspectharddos	1
Redirect Suspectdos	1
Redirect X Dostranslated Ip	216.73.216.113
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	216.73.216.113
Redirect Unique Id	aSl-TtN75i9hIGWqh4LU4wAAASc
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect Suspectharddos	1
Redirect Redirect Suspectdos	1
Redirect Redirect X Dostranslated Ip	216.73.216.113
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	216.73.216.113
Redirect Redirect Unique Id	aSl-TtN75i9hIGWqh4LU4wAAASc
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1764326990.8978
Request Time	1764326990

CVE

Actions

Related CVE References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files