Lucene search
Ubuntu.comUB:CVE-2005-3192HistoryDec 08, 2005 - 12:00 a.m.
CVE-2005-3192
2005-12-0800:00:00
ubuntu.com
ubuntu.com
11
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.184 Low
EPSS
Percentile
96.2%
Heap-based buffer overflow in the StreamPredictor function in Xpdf 3.01, as
used in products such as (1) Poppler, (2) teTeX, (3) KDE kpdf, and (4)
pdftohtml, (5) KOffice KWord, (6) CUPS, and (7) libextractor allows remote
attackers to execute arbitrary code via a PDF file with an out-of-range
numComps (number of components) field.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 6.06 | noarch | gpdf | < 2.10.0-2 | UNKNOWN |
| ubuntu | 6.10 | noarch | gpdf | < 2.10.0-2 | UNKNOWN |
| ubuntu | 6.06 | noarch | kdegraphics | < 3.5.2-0ubuntu6 | UNKNOWN |
| ubuntu | 6.10 | noarch | kdegraphics | < 3.5.2-0ubuntu6 | UNKNOWN |
| ubuntu | 7.04 | noarch | kdegraphics | < 3.5.2-0ubuntu6 | UNKNOWN |
| ubuntu | 6.06 | noarch | poppler | < 0.5.1-0ubuntu7.2 | UNKNOWN |
| ubuntu | 6.10 | noarch | poppler | < 0.5.4-0ubuntu4.2 | UNKNOWN |
| ubuntu | 7.04 | noarch | poppler | < 0.5.4-0ubuntu8.1 | UNKNOWN |
| ubuntu | 6.06 | noarch | tetex-bin | < 3.0-13ubuntu6 | UNKNOWN |
| ubuntu | 6.10 | noarch | tetex-bin | < 3.0-13ubuntu6 | UNKNOWN |
Related
nvd
nvd
CVE-2005-3192
2005-12-08 01:03:00
cvelist
cvelist
CVE-2005-3192
2005-12-08 01:00:00
debiancve
debiancve
CVE-2005-3192
2005-12-08 01:03:00
securityvulns
securityvulns
cve
cve
CVE-2005-3192
2005-12-08 01:03:00
openvas
openvas
SLES9: Security update for cups
2009-10-10 00:00:00
SLES9: Security update for cups
2009-10-10 00:00:00
Gentoo Security Advisory GLSA 200512-08 (xpdf, gpdf, poppler,cups)
2008-09-24 00:00:00
gentoo
gentoo
Xpdf, GPdf, CUPS, Poppler: Multiple vulnerabilities
2005-12-16 00:00:00
KPdf, KWord: Multiple overflows in included Xpdf code
2006-01-04 00:00:00
nessus
nessus
Fedora Core 4 : tetex-3.0-7.FC4 (2005-1126)
2005-12-08 00:00:00
Fedora Core 4 : cups-1.1.23-15.2 (2005-1142)
2005-12-15 00:00:00
GLSA-200512-08 : Xpdf, GPdf, CUPS, Poppler: Multiple vulnerabilities
2005-12-20 00:00:00
osv
osv
koffice - several
2006-03-24 00:00:00
pdftohtml - buffer overflows
2006-02-01 00:00:00
kdegraphics - buffer overflows
2006-01-09 00:00:00
ubuntu
ubuntu
xpdf vulnerabilities
2005-12-12 00:00:00
redhat
redhat
(RHSA-2005:878) cups security update
2005-12-20 00:00:00
(RHSA-2005:867) gpdf security update
2005-12-20 00:00:00
(RHSA-2005:868) kdegraphics security update
2005-12-20 00:00:00
centos
centos
gpdf security update
2005-12-21 02:51:50
cups security update
2005-12-20 23:29:16
kdegraphics security update
2005-12-21 02:55:30
debian
debian
[SECURITY] [DSA 937-1] New tetex-bin packages fix arbitrary code execution
2006-01-12 11:32:22
[SECURITY] [DSA 940-1] New gpdf packages fix arbitrary code execution
2006-01-13 09:12:45
[SECURITY] [DSA 937-1] New tetex-bin packages fix arbitrary code execution
2006-01-12 11:32:22
suse
suse
remote code execution in xpdf,kpdf,gpdf,kword
2006-01-11 12:03:37
slackware
slackware
[slackware-security] xpdf
2006-02-15 00:28:51
[slackware-security] kdegraphics
2006-02-15 00:27:14
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.184 Low
EPSS
Percentile
96.2%
Related for UB:CVE-2005-3192