Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

xpdf xpdf 0.93 vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2005-3191
Multiple heap-based buffer overflows in the (1) DCTStream::readProgressiveSOF and (2) DCTStream::readBaselineSOF functions in the DCT stream parsing code (Stream.cc) in xpdf 3.01 and previous versions, as used in products such as (a) Poppler, (b) teTeX, (c) KDE kpdf, (d) pdftohtm...
Xpdf Xpdf 1.0Xpdf Xpdf 1.0aXpdf Xpdf 3.0 Pl2Xpdf Xpdf 3.0 Pl3Xpdf Xpdf 0.92Xpdf Xpdf 0.93Xpdf Xpdf 3.0Xpdf Xpdf 3.0.1Xpdf Xpdf 1.1Xpdf Xpdf 2.0Xpdf Xpdf 0.90Xpdf Xpdf 0.91Xpdf Xpdf 2.1Xpdf Xpdf 2.2Xpdf Xpdf 2.3
NA
CVE-2005-3193
Heap-based buffer overflow in the JPXStream::readCodestream function in the JPX stream parsing code (JPXStream.c) for xpdf 3.01 and previous versions, as used in products such as (1) Poppler, (2) teTeX, (3) KDE kpdf, (4) CUPS, and (5) libextractor allows user-assisted malicious u...
Xpdf Xpdf 0.93Xpdf Xpdf 1.0Xpdf Xpdf 1.0aXpdf Xpdf 3.0.1Xpdf Xpdf 3.0 Pl2Xpdf Xpdf 0.90Xpdf Xpdf 2.1Xpdf Xpdf 2.2Xpdf Xpdf 0.91Xpdf Xpdf 0.92Xpdf Xpdf 2.3Xpdf Xpdf 3.0Xpdf Xpdf 1.1Xpdf Xpdf 2.0Xpdf Xpdf 3.0 Pl3
NA
CVE-2005-0064
Buffer overflow in the Decrypt::makeFileKey2 function in Decrypt.cc for xpdf 3.00 and previous versions allows remote malicious users to execute arbitrary code via a PDF file with a large /Encrypt /Length keyLength value.
Xpdf Xpdf 0.4Xpdf Xpdf 0.5Xpdf Xpdf 0.91Xpdf Xpdf 0.91aXpdf Xpdf 0.92eXpdf Xpdf 0.93Xpdf Xpdf 2.0Xpdf Xpdf 2.1Xpdf Xpdf 0.5aXpdf Xpdf 0.6Xpdf Xpdf 0.91bXpdf Xpdf 0.91cXpdf Xpdf 0.93aXpdf Xpdf 0.93bXpdf Xpdf 2.2Xpdf Xpdf 2.3Xpdf Xpdf 0.7Xpdf Xpdf 0.7aXpdf Xpdf 0.92Xpdf Xpdf 0.92aXpdf Xpdf 0.93cXpdf Xpdf 1.0
NA
CVE-2006-1244
Unspecified vulnerability in certain versions of xpdf after 3.00, as used in various products including (a) pdfkit.framework, (b) gpdf, (c) pdftohtml, and (d) libextractor, has unknown impact and user-assisted attack vectors, possibly involving errors in (1) gmem.c, (2) SplashXPa...
Libextractor Libextractor 0.3.8Libextractor Libextractor 0.3.9Xpdf Xpdf 0.92Xpdf Xpdf 0.93Xpdf Xpdf 1.0Xpdf Xpdf 3.0Xpdf Xpdf 3.0.1Libextractor Libextractor 0.3.6Libextractor Libextractor 0.3.7Xpdf Xpdf 0.90Xpdf Xpdf 0.91Xpdf Xpdf 2.2Xpdf Xpdf 2.3Libextractor Libextractor 0.4Libextractor Libextractor 0.4.1Xpdf Xpdf 1.0aXpdf Xpdf 1.1Xpdf Xpdf 3.0.1 Pl1Xpdf Xpdf 3.0 Pl2Gnome Gpdf 2.8.2Libextractor Libextractor 0.3.11Libextractor Libextractor 0.4.2
NA
CVE-2009-1144
Untrusted search path vulnerability in the Gentoo package of Xpdf prior to 3.02-r2 allows local users to gain privileges via a Trojan horse xpdfrc file in the current working directory, related to an unset SYSTEM_XPDFRC macro in a Gentoo build process that uses the poppler librar...
Glyphandcog Xpdfreader 2.03Glyphandcog Xpdfreader 2.02Foolabs Xpdf 0.93bFoolabs Xpdf 0.93aGlyphandcog Xpdfreader 0.91Foolabs Xpdf 0.91cFoolabs Xpdf 0.91bFoolabs Xpdf 0.5aGlyphandcog Xpdfreader 0.5Glyphandcog Xpdfreader 2.01Glyphandcog Xpdfreader 2.00Glyphandcog Xpdfreader 0.93Foolabs Xpdf 0.92eFoolabs Xpdf 0.91aGlyphandcog Xpdfreader 0.90Glyphandcog Xpdfreader 0.4Glyphandcog Xpdfreader 0.3Glyphandcog Xpdfreader 1.01Glyphandcog Xpdfreader 1.00Foolabs Xpdf 0.92dFoolabs Xpdf 0.92cGlyphandcog Xpdfreader 0.80
NA
CVE-2009-0195
Heap-based buffer overflow in Xpdf 3.02pl2 and previous versions, CUPS 1.3.9, and probably other products, allows remote malicious users to execute arbitrary code via a PDF file with crafted JBIG2 symbol dictionary segments.
Glyphandcog XpdfreaderGlyphandcog Xpdfreader 0.90Glyphandcog Xpdfreader 0.6Foolabs Xpdf 0.5aFoolabs Xpdf 0.92cFoolabs Xpdf 0.92dGlyphandcog Xpdfreader 2.02Glyphandcog Xpdfreader 2.00Glyphandcog Xpdfreader 3.00Apple Cups 1.3.9Glyphandcog Xpdfreader 0.4Glyphandcog Xpdfreader 0.3Glyphandcog Xpdfreader 0.92Glyphandcog Xpdfreader 0.91Foolabs Xpdf 0.92eGlyphandcog Xpdfreader 1.00Glyphandcog Xpdfreader 1.01Foolabs Xpdf 0.93bGlyphandcog Xpdfreader 0.93Glyphandcog Xpdfreader 0.80Foolabs Xpdf 0.7aGlyphandcog Xpdfreader 0.5
NA
CVE-2009-0165
Integer overflow in the JBIG2 decoder in Xpdf 3.02pl2 and previous versions, as used in Poppler and other products, when running on Mac OS X, has unspecified impact, related to "g*allocn."
Foolabs Xpdf 0.91aGlyphandcog Xpdfreader 0.90Glyphandcog Xpdfreader 0.4Glyphandcog Xpdfreader 0.3Glyphandcog Xpdfreader 1.01Foolabs Xpdf 0.93cFoolabs Xpdf 0.92dFoolabs Xpdf 0.92aFoolabs Xpdf 0.92bGlyphandcog XpdfreaderGlyphandcog Xpdfreader 3.01Glyphandcog Xpdfreader 0.91Glyphandcog Xpdfreader 0.6Foolabs Xpdf 0.5aGlyphandcog Xpdfreader 2.03Glyphandcog Xpdfreader 2.00Foolabs Xpdf 0.92eGlyphandcog Xpdfreader 0.93Glyphandcog Xpdfreader 0.80Foolabs Xpdf 0.7aGlyphandcog Xpdfreader 0.92Glyphandcog Xpdfreader 0.2
NA
CVE-2011-1552
t1lib 5.1.2 and previous versions, as used in Xpdf prior to 3.02pl6, teTeX, and other products, reads from invalid memory locations, which allows remote malicious users to cause a denial of service (application crash) via a crafted Type 1 font in a PDF document, a different vulne...
T1lib T1lib 5.0.2T1lib T1lib 5.0.1T1lib T1lib 5.0.0T1lib T1lib 0.7T1lib T1lib 0.8T1lib T1lib 5.1.1T1lib T1lib 5.1.0T1lib T1lib 0.5T1lib T1lib 0.6T1lib T1lib 1.0.1T1lib T1lib 1.1.0T1lib T1lib 0.1T1lib T1lib 0.2T1lib T1lib 0.9T1lib T1lib 0.9.1T1lib T1lib 1.3T1lib T1lib 1.3.1T1lib T1lib 0.3T1lib T1lib 0.4T1lib T1lib 0.9.2T1lib T1lib 1.0T1lib T1lib
NA
CVE-2011-1553
Use-after-free vulnerability in t1lib 5.1.2 and previous versions, as used in Xpdf prior to 3.02pl6, teTeX, and other products, allows remote malicious users to cause a denial of service (application crash) via a PDF document containing a crafted Type 1 font that triggers an inva...
T1lib T1lib 0.1T1lib T1lib 0.2T1lib T1lib 0.9.1T1lib T1lib 0.9.2T1lib T1lib 1.3.1T1lib T1libT1lib T1lib 5.1.0T1lib T1lib 5.0.2T1lib T1lib 0.5T1lib T1lib 0.6T1lib T1lib 1.1.0T1lib T1lib 1.1.1T1lib T1lib 5.0.1T1lib T1lib 5.0.0T1lib T1lib 0.7T1lib T1lib 0.8T1lib T1lib 0.9T1lib T1lib 1.2T1lib T1lib 1.3T1lib T1lib 5.1.1T1lib T1lib 0.3T1lib T1lib 0.4
NA
CVE-2011-1554
Off-by-one error in t1lib 5.1.2 and previous versions, as used in Xpdf prior to 3.02pl6, teTeX, and other products, allows remote malicious users to cause a denial of service (application crash) via a PDF document containing a crafted Type 1 font that triggers an invalid memory r...
T1lib T1lib 5.0.0T1lib T1lib 0.1T1lib T1lib 0.2T1lib T1lib 0.9T1lib T1lib 0.9.1T1lib T1lib 1.3T1lib T1lib 1.3.1T1lib T1lib 0.3T1lib T1lib 0.4T1lib T1lib 0.9.2T1lib T1lib 1.0T1lib T1libT1lib T1lib 5.0.2T1lib T1lib 5.0.1T1lib T1lib 0.7T1lib T1lib 0.8T1lib T1lib 1.1.1T1lib T1lib 1.2T1lib T1lib 5.1.1T1lib T1lib 5.1.0T1lib T1lib 0.5T1lib T1lib 0.6
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304CVE-2024-4240arbitrary CVE-2024-31601XSSCVE-2023-20198CVE-2024-4256CVE-2024-3342encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook