Lucene search

MitreCVE-2009-0755

HistoryMar 03, 2009 - 4:30 p.m.

CVE-2009-0755

2009-03-0316:30:05

mitre

web.nvd.nist.gov

poppler

formwidgetchoice

loaddefaults

denial of service

crash

cve-2009-0755

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

7.1

Confidence

High

EPSS

0.114

Percentile

95.3%

JSON

The FormWidgetChoice::loadDefaults function in Poppler before 0.10.4 allows remote attackers to cause a denial of service (crash) via a PDF file with an invalid Form Opt entry.

Affected configurations

Nvd

Node

popplerpopplerRange≤0.10.3

popplerpopplerMatch0.1

popplerpopplerMatch0.1.1

popplerpopplerMatch0.1.2

popplerpopplerMatch0.2.0

popplerpopplerMatch0.3.0

popplerpopplerMatch0.3.1

popplerpopplerMatch0.3.2

popplerpopplerMatch0.3.3

popplerpopplerMatch0.4.0

popplerpopplerMatch0.4.1

popplerpopplerMatch0.4.2

popplerpopplerMatch0.4.3

popplerpopplerMatch0.4.4

popplerpopplerMatch0.5.0

popplerpopplerMatch0.5.1

popplerpopplerMatch0.5.2

popplerpopplerMatch0.5.3

popplerpopplerMatch0.5.4

popplerpopplerMatch0.5.9

popplerpopplerMatch0.5.90

popplerpopplerMatch0.5.91

popplerpopplerMatch0.6.0

popplerpopplerMatch0.6.1

popplerpopplerMatch0.6.2

popplerpopplerMatch0.6.3

popplerpopplerMatch0.6.4

popplerpopplerMatch0.7.0

popplerpopplerMatch0.7.1

popplerpopplerMatch0.7.2

popplerpopplerMatch0.7.3

popplerpopplerMatch0.8.4

popplerpopplerMatch0.10.1

popplerpopplerMatch0.10.2

VendorProductVersionCPE
popplerpoppler0.3.0cpe:/a:poppler:poppler:0.3.0:::
popplerpoppler0.5.90cpe:/a:poppler:poppler:0.5.90:::
popplerpoppler0.7.3cpe:/a:poppler:poppler:0.7.3:::
popplerpoppler0.8.4cpe:/a:poppler:poppler:0.8.4:::
popplerpoppler0.6.1cpe:/a:poppler:poppler:0.6.1:::
popplerpoppler0.3.3cpe:/a:poppler:poppler:0.3.3:::
popplerpoppler0.6.0cpe:/a:poppler:poppler:0.6.0:::
popplerpoppler0.4.3cpe:/a:poppler:poppler:0.4.3:::
popplerpoppler0.5.4cpe:/a:poppler:poppler:0.5.4:::
popplerpoppler0.4.1cpe:/a:poppler:poppler:0.4.1:::

Vendor	Product	Version	CPE
poppler	poppler	0.3.0	cpe:/a:poppler:poppler:0.3.0:::
poppler	poppler	0.5.90	cpe:/a:poppler:poppler:0.5.90:::
poppler	poppler	0.7.3	cpe:/a:poppler:poppler:0.7.3:::
poppler	poppler	0.8.4	cpe:/a:poppler:poppler:0.8.4:::
poppler	poppler	0.6.1	cpe:/a:poppler:poppler:0.6.1:::
poppler	poppler	0.3.3	cpe:/a:poppler:poppler:0.3.3:::
poppler	poppler	0.6.0	cpe:/a:poppler:poppler:0.6.0:::
poppler	poppler	0.4.3	cpe:/a:poppler:poppler:0.4.3:::
poppler	poppler	0.5.4	cpe:/a:poppler:poppler:0.5.4:::
poppler	poppler	0.4.1	cpe:/a:poppler:poppler:0.4.1:::