Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2008-1374HistoryApr 04, 2008 - 12:44 a.m.
CVE-2008-1374
2008-04-0400:44:00
Debian Security Bug Tracker
security-tracker.debian.org
29
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.6
Confidence
Low
EPSS
0.07
Percentile
94.1%
Integer overflow in pdftops filter in CUPS in Red Hat Enterprise Linux 3 and 4, when running on 64-bit platforms, allows remote attackers to execute arbitrary code via a crafted PDF file. NOTE: this issue is due to an incomplete fix for CVE-2004-0888.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | cups | < 2.4.2-3+deb12u7 | cups_2.4.2-3+deb12u7_all.deb |
| Debian | 11 | all | cups | < 2.3.3op2-3+deb11u8 | cups_2.3.3op2-3+deb11u8_all.deb |
| Debian | 999 | all | cups | < 2.4.10-1 | cups_2.4.10-1_all.deb |
| Debian | 13 | all | cups | < 2.4.10-1 | cups_2.4.10-1_all.deb |
Related
cvelist
cvelist
ubuntucve
ubuntucve
prion
prion
Integer overflow
2008-04-04 00:44:00
cve
cve
nvd
nvd
redhat
redhat
(RHSA-2008:0206) Moderate: cups security update
2008-04-01 00:00:00
(RHSA-2004:592) xpdf security update
2004-10-27 00:00:00
(RHSA-2005:213) xpdf security update
2005-03-04 00:00:00
centos
centos
cups security update
2008-04-01 17:06:38
tetex security update
2005-04-01 21:29:55
nessus
nessus
Fedora Core 2 : xpdf-3.00-3.8 (2005-135)
2005-02-10 00:00:00
Ubuntu 4.10 : tetex-bin vulnerabilities (USN-9-1)
2006-01-15 00:00:00
Debian DSA-581-1 : xpdf - integer overflows
2004-11-10 00:00:00
osv
osv
tetex-bin - integer overflows
2004-11-25 00:00:00
xpdf - integer overflows
2004-11-02 00:00:00
cupsys - integer overflows
2004-10-21 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-599-1)
2008-01-17 00:00:00
Gentoo Security Advisory GLSA 200411-30 (pdftohtml)
2008-09-24 00:00:00
Debian Security Advisory DSA 599-1 (tetex-bin)
2008-01-17 00:00:00
debian
debian
[SECURITY] [DSA 599-1] New tetex-bin packages fix arbitrary code execution
2004-11-25 14:48:24
[SECURITY] [DSA 581-1] New xpdf packages fix arbitrary code execution
2004-11-02 15:35:44
[SECURITY] [DSA 573-1] New cupsys packages fix arbitrary code execution
2004-10-21 14:18:22
gentoo
gentoo
pdftohtml: Vulnerabilities in included Xpdf
2004-11-23 00:00:00
Xpdf, CUPS: Multiple integer overflows
2004-10-21 00:00:00
GPdf, KPDF, KOffice: Vulnerabilities in included xpdf
2004-10-28 00:00:00
securityvulns
securityvulns
MDKSA-2004:114 - Updated gpdf packages fix DoS vulnerability
2004-10-22 00:00:00
MDKSA-2004:116 - Updated cups packages fix DoS vulnerabilities
2004-10-22 00:00:00
[KDE security advisory] Multiple integer overflows in kpdf
2004-10-22 00:00:00
ubuntu
ubuntu
tetex-bin vulnerabilities
2004-10-28 00:00:00
xpdf vulnerabilities
2004-11-02 00:00:00
debiancve
debiancve
freebsd
freebsd
xpdf -- integer overflow vulnerabilities
2004-10-21 00:00:00
oraclelinux
oraclelinux
cups security update
2008-04-01 00:00:00
kdegraphics security update
2006-11-30 00:00:00
suse
suse
remote system compromise in xpdf, gpdf, kdegraphics3-pdf, pdftohtml, cups
2004-10-26 10:45:14
local privilege escalation in libtiff
2004-10-22 14:52:41
potential remote buffer overflow in samba
2004-11-15 22:07:05
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.6
Confidence
Low
EPSS
0.07
Percentile
94.1%
Related for DEBIANCVE:CVE-2008-1374