NVD

Id
48473  
Name
CVE-2009-1180  
Description
The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to execute arbitrary code via a crafted PDF file that triggers a free of invalid data.  
Reject
 
CVSS Version
2  
CVSS Score
6.8  
Severity
Medium  
CVSS Base Score
6.8  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-07  
Published
2009-04-23  
Modified Date
2012-04-20  
Seq
2009-1180  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
244121 48473 CVE-2009-1180 SUSE-SA:2009:024  View
244122 48473 CVE-2009-1180 SUSE-SR:2009:010  View
244123 48473 CVE-2009-1180 SUSE-SR:2009:012  View
244124 48473 CVE-2009-1180 oval:org.mitre.oval:def:9926  View
244125 48473 CVE-2009-1180 http://poppler.freedesktop.org/releases.html  View
244126 48473 CVE-2009-1180 RHSA-2009:0458  View
244127 48473 CVE-2009-1180 SSA:2009-129-01  View
244128 48473 CVE-2009-1180 DSA-1790  View
244129 48473 CVE-2009-1180 DSA-1793  View
244130 48473 CVE-2009-1180 VU#196617  View
244131 48473 CVE-2009-1180 MDVSA-2009:101  View
244132 48473 CVE-2009-1180 MDVSA-2010:087  View
244133 48473 CVE-2009-1180 MDVSA-2011:175  View
244134 48473 CVE-2009-1180 RHSA-2009:0429  View
244135 48473 CVE-2009-1180 RHSA-2009:0430  View
244136 48473 CVE-2009-1180 RHSA-2009:0431  View
244137 48473 CVE-2009-1180 RHSA-2009:0480  View
244138 48473 CVE-2009-1180 34568  View
244139 48473 CVE-2009-1180 1022073  View
244140 48473 CVE-2009-1180 ADV-2009-1065  View
244141 48473 CVE-2009-1180 ADV-2009-1066  View
244142 48473 CVE-2009-1180 ADV-2009-1076  View
244143 48473 CVE-2009-1180 ADV-2009-1077  View
244144 48473 CVE-2009-1180 ADV-2010-1040  View
244145 48473 CVE-2009-1180 https://bugzilla.redhat.com/show_bug.cgi?id=495892  View
244146 48473 CVE-2009-1180 FEDORA-2009-6972  View
244147 48473 CVE-2009-1180 FEDORA-2009-6973  View
244148 48473 CVE-2009-1180 FEDORA-2009-6982  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
40258 JVNDB-2009-001264 JBIG2 デコーダにおける任意のコードを実行される脆弱性 Xpdf、CUPS、Poppler などの製品の JBIG2 デコーダには、PDF ファイルの処理に不備があるため、任意のコードを実行される脆弱性が存在します。 CVE-2009-1180 38611 CVE-2009-1180 48473 6.8 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001264.html 2009-04-16 2010-05-26 View