NVD

Id
50805  
Name
CVE-2009-3606  
Description
Integer overflow in the PSOutputDev::doImageL1Sep function in Xpdf before 3.02pl4, and Poppler 0.x, as used in kdegraphics KPDF, might allow remote attackers to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow.  
Reject
 
CVSS Version
2  
CVSS Score
9.3  
Severity
High  
CVSS Base Score
9.3  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-07  
Published
2009-10-21  
Modified Date
2012-01-18  
Seq
2009-3606  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
257023 50805 CVE-2009-3606 ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.02pl4.patch  View
257024 50805 CVE-2009-3606 http://cgit.freedesktop.org/poppler/poppler/diff/poppler/PSOutputDev.cc?id=7b2d314a61  View
257025 50805 CVE-2009-3606 FEDORA-2010-1805  View
257026 50805 CVE-2009-3606 FEDORA-2010-1842  View
257027 50805 CVE-2009-3606 FEDORA-2010-1377  View
257028 50805 CVE-2009-3606 SUSE-SR:2009:018  View
257029 50805 CVE-2009-3606 oval:org.mitre.oval:def:11289  View
257030 50805 CVE-2009-3606 oval:org.mitre.oval:def:7836  View
257031 50805 CVE-2009-3606 1023029  View
257032 50805 CVE-2009-3606 274030  View
257033 50805 CVE-2009-3606 1021706  View
257034 50805 CVE-2009-3606 DSA-1941  View
257035 50805 CVE-2009-3606 DSA-2028  View
257036 50805 CVE-2009-3606 DSA-2050  View
257037 50805 CVE-2009-3606 MDVSA-2009:287  View
257038 50805 CVE-2009-3606 MDVSA-2010:087  View
257039 50805 CVE-2009-3606 MDVSA-2011:175  View
257040 50805 CVE-2009-3606 [oss-security] 20091130 Need more information on recent poppler issues  View
257041 50805 CVE-2009-3606 [oss-security] 20091130 Re: Need more information on recent poppler issues  View
257042 50805 CVE-2009-3606 [oss-security] 20091201 Re: Need more information on recent poppler issues  View
257043 50805 CVE-2009-3606 36703  View
257044 50805 CVE-2009-3606 ADV-2009-2924  View
257045 50805 CVE-2009-3606 ADV-2009-2928  View
257046 50805 CVE-2009-3606 ADV-2010-0802  View
257047 50805 CVE-2009-3606 ADV-2010-1040  View
257048 50805 CVE-2009-3606 ADV-2010-1220  View
257049 50805 CVE-2009-3606 xpdf-psoutputdev-bo(53798)  View
257050 50805 CVE-2009-3606 https://bugzilla.redhat.com/show_bug.cgi?id=526877  View
257051 50805 CVE-2009-3606 RHSA-2009:1500  View
257052 50805 CVE-2009-3606 RHSA-2009:1501  View
257053 50805 CVE-2009-3606 RHSA-2009:1502  View
257054 50805 CVE-2009-3606 FEDORA-2009-10823  View
257055 50805 CVE-2009-3606 FEDORA-2009-10845  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
41254 JVNDB-2009-002261 Xpdf および Poppler の PSOutputDev::doImageL1Sep 関数における整数オーバーフローの脆弱性 Xpdf および Poppler の PSOutputDev::doImageL1Sep 関数には、PDF ドキュメントの処理に不備があるため、整数オーバーフローの脆弱性が存在します。 CVE-2009-3606 41037 CVE-2009-3606 50805 9.3 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002261.html 2009-10-15 2010-01-20 View