Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xpdf xpdf 1.1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-3191
Multiple heap-based buffer overflows in the (1) DCTStream::readProgressiveSOF and (2) DCTStream::readBaselineSOF functions in the DCT stream parsing code (Stream.cc) in xpdf 3.01 and previous versions, as used in products such as (a) Poppler, (b) teTeX, (c) KDE kpdf, (d) pdftohtm...
Xpdf Xpdf 2.0
Xpdf Xpdf 3.0 Pl3
Xpdf Xpdf 1.0
Xpdf Xpdf 0.91
Xpdf Xpdf 2.3
Xpdf Xpdf 0.92
Xpdf Xpdf 3.0.1
Xpdf Xpdf 1.0a
Xpdf Xpdf 2.2
Xpdf Xpdf 3.0 Pl2
Xpdf Xpdf 2.1
Xpdf Xpdf 0.90
Xpdf Xpdf 3.0
Xpdf Xpdf 0.93
Xpdf Xpdf 1.1
NA
CVE-2005-3193
Heap-based buffer overflow in the JPXStream::readCodestream function in the JPX stream parsing code (JPXStream.c) for xpdf 3.01 and previous versions, as used in products such as (1) Poppler, (2) teTeX, (3) KDE kpdf, (4) CUPS, and (5) libextractor allows user-assisted malicious u...
Xpdf Xpdf 2.0
Xpdf Xpdf 3.0 Pl3
Xpdf Xpdf 1.0
Xpdf Xpdf 0.91
Xpdf Xpdf 2.3
Xpdf Xpdf 0.92
Xpdf Xpdf 3.0.1
Xpdf Xpdf 1.0a
Xpdf Xpdf 2.2
Xpdf Xpdf 3.0 Pl2
Xpdf Xpdf 2.1
Xpdf Xpdf 0.90
Xpdf Xpdf 3.0
Xpdf Xpdf 0.93
Xpdf Xpdf 1.1
NA
CVE-2005-0064
Buffer overflow in the Decrypt::makeFileKey2 function in Decrypt.cc for xpdf 3.00 and previous versions allows remote malicious users to execute arbitrary code via a PDF file with a large /Encrypt /Length keyLength value.
Xpdf Xpdf 2.0
Xpdf Xpdf 0.91a
Xpdf Xpdf 0.6
Xpdf Xpdf 1.0
Xpdf Xpdf 0.93a
Xpdf Xpdf 0.5
Xpdf Xpdf 0.80
Xpdf Xpdf 0.91
Xpdf Xpdf 0.93c
Xpdf Xpdf 0.92a
Xpdf Xpdf 0.2
Xpdf Xpdf 2.3
Xpdf Xpdf 0.92
Xpdf Xpdf 0.93b
Xpdf Xpdf 1.0a
Xpdf Xpdf 0.5a
Xpdf Xpdf 0.92c
Xpdf Xpdf 0.3
Xpdf Xpdf 0.7a
Xpdf Xpdf 0.92d
Xpdf Xpdf 2.2
Xpdf Xpdf 0.92b
NA
CVE-2006-1244
Unspecified vulnerability in certain versions of xpdf after 3.00, as used in various products including (a) pdfkit.framework, (b) gpdf, (c) pdftohtml, and (d) libextractor, has unknown impact and user-assisted attack vectors, possibly involving errors in (1) gmem.c, (2) SplashXPa...
Xpdf Xpdf 2.0
Libextractor Libextractor 0.3.11
Xpdf Xpdf 3.0 Pl3
Xpdf Xpdf 1.0
Libextractor Libextractor 0.4.1
Libextractor Libextractor 0.4.2
Xpdf Xpdf 3.0.1 Pl1
Xpdf Xpdf 0.91
Libextractor Libextractor 0.4
Libextractor Libextractor 0.3.8
Xpdf Xpdf 2.3
Xpdf Xpdf 0.92
Xpdf Xpdf 3.0.1
Gnome Gpdf 2.8.2
Xpdf Xpdf 1.0a
Libextractor Libextractor 0.3.9
Xpdf Xpdf 2.2
Xpdf Xpdf 3.0 Pl2
Xpdf Xpdf 2.1
Xpdf Xpdf 0.90
Xpdf Xpdf 3.0
Libextractor Libextractor 0.5
NA
CVE-2002-1384
Integer overflow in pdftops, as used in Xpdf 2.01 and previous versions, xpdf-i, and CUPS prior to 1.1.18, allows local users to execute arbitrary code via a ColorSpace entry with a large number of elements, as demonstrated by cups-pdf.
Xpdf Xpdf 2.0
Easy Software Products Cups 1.1.10
Xpdf Xpdf 1.0
Easy Software Products Cups 1.1.7
Xpdf Xpdf 0.91
Easy Software Products Cups 1.0.4 8
Easy Software Products Cups 1.1.13
Xpdf Xpdf 1.0a
Easy Software Products Cups 1.1.17
Easy Software Products Cups 1.1.4 3
Easy Software Products Cups 1.1.4
Xpdf Xpdf 2.1
Xpdf Xpdf 0.90
Easy Software Products Cups 1.1.4 5
Easy Software Products Cups 1.1.1
Easy Software Products Cups 1.0.4
Easy Software Products Cups 1.1.14
Easy Software Products Cups 1.1.4 2
Xpdf Xpdf 1.1
Easy Software Products Cups 1.1.6
NA
CVE-2004-0888
Multiple integer overflows in xpdf 2.0 and 3.0, and other packages that use xpdf code such as CUPS, gpdf, and kdegraphics, allow remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code, a different set of vulnerabilities than those identifi...
Pdftohtml Pdftohtml 0.32a
Easy Software Products Cups 1.1.19 Rc5
Xpdf Xpdf 2.0
Easy Software Products Cups 1.1.10
Easy Software Products Cups 1.1.16
Xpdf Xpdf 1.0
Kde Koffice 1.3 Beta2
Easy Software Products Cups 1.1.7
Pdftohtml Pdftohtml 0.35
Xpdf Xpdf 0.91
Easy Software Products Cups 1.0.4 8
Gnome Gpdf 0.112
Kde Koffice 1.3.3
Pdftohtml Pdftohtml 0.32b
Easy Software Products Cups 1.1.15
Kde Koffice 1.3 Beta3
Easy Software Products Cups 1.1.13
Pdftohtml Pdftohtml 0.33a
Xpdf Xpdf 2.3
Kde Koffice 1.3
Tetex Tetex 1.0.7
Xpdf Xpdf 0.92
NA
CVE-2004-0889
Multiple integer overflows in xpdf 3.0, and other packages that use xpdf code such as CUPS, allow remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code, a different set of vulnerabilities than those identified by CVE-2004-0888.
Pdftohtml Pdftohtml 0.32a
Easy Software Products Cups 1.1.19 Rc5
Xpdf Xpdf 2.0
Easy Software Products Cups 1.1.10
Easy Software Products Cups 1.1.16
Xpdf Xpdf 1.0
Kde Koffice 1.3 Beta2
Easy Software Products Cups 1.1.7
Pdftohtml Pdftohtml 0.35
Xpdf Xpdf 0.91
Easy Software Products Cups 1.0.4 8
Gnome Gpdf 0.112
Kde Koffice 1.3.3
Pdftohtml Pdftohtml 0.32b
Easy Software Products Cups 1.1.15
Kde Koffice 1.3 Beta3
Easy Software Products Cups 1.1.13
Pdftohtml Pdftohtml 0.33a
Xpdf Xpdf 2.3
Kde Koffice 1.3
Tetex Tetex 1.0.7
Xpdf Xpdf 0.92
NA
CVE-2005-0206
The patch for integer overflow vulnerabilities in Xpdf 2.0 and 3.0 (CVE-2004-0888) is incomplete for 64-bit architectures on certain Linux distributions such as Red Hat, which could leave Xpdf users exposed to the original vulnerabilities.
Pdftohtml Pdftohtml 0.32a
Easy Software Products Cups 1.1.19 Rc5
Xpdf Xpdf 2.0
Easy Software Products Cups 1.1.10
Easy Software Products Cups 1.1.16
Xpdf Xpdf 1.0
Kde Koffice 1.3 Beta2
Sgi Propack 3.0
Easy Software Products Cups 1.1.7
Pdftohtml Pdftohtml 0.35
Xpdf Xpdf 0.91
Easy Software Products Cups 1.0.4 8
Gnome Gpdf 0.112
Kde Koffice 1.3.3
Pdftohtml Pdftohtml 0.32b
Easy Software Products Cups 1.1.15
Kde Koffice 1.3 Beta3
Gnome Gpdf 0.110
Easy Software Products Cups 1.1.13
Pdftohtml Pdftohtml 0.33a
Xpdf Xpdf 2.3
Kde Koffice 1.3
NA
CVE-2003-0434
Various PDF viewers including (1) Adobe Acrobat 5.06 and (2) Xpdf 1.01 allow remote malicious users to execute arbitrary commands via shell metacharacters in an embedded hyperlink.
Adobe Acrobat 5.0.6
Xpdf Xpdf 1.1
Mandrakesoft Mandrake Linux Corporate Server 2.1
Redhat Enterprise Linux 2.1
Redhat Linux Advanced Workstation 2.1
Redhat Linux 7.2
Redhat Linux 8.0
Redhat Linux 7.3
Mandrakesoft Mandrake Linux 9.0
Redhat Linux 9.0
Mandrakesoft Mandrake Linux 9.1
Redhat Linux 7.1
1 EDB exploit
NA
CVE-2009-0146
Multiple buffer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and previous versions, CUPS 1.3.9 and previous versions, and other products allow remote malicious users to cause a denial of service (crash) via a crafted PDF file, related to (1) JBIG2SymbolDict::setBitmap and (2) J...
Foolabs Xpdf 0.91c
Foolabs Xpdf 0.91b
Foolabs Xpdf 0.93b
Foolabs Xpdf 1.00a
Foolabs Xpdf 0.91a
Foolabs Xpdf 0.92e
Foolabs Xpdf 0.5a
Foolabs Xpdf 0.92b
Foolabs Xpdf 0.93c
Foolabs Xpdf 0.92c
Foolabs Xpdf 0.7a
Foolabs Xpdf 0.93a
Foolabs Xpdf 0.92d
Foolabs Xpdf 0.92a
Glyphandcog Xpdfreader 0.2
Glyphandcog Xpdfreader 0.3
Glyphandcog Xpdfreader 0.4
Glyphandcog Xpdfreader 0.5
Glyphandcog Xpdfreader 0.6
Glyphandcog Xpdfreader 0.80
Glyphandcog Xpdfreader 0.90
Glyphandcog Xpdfreader 1.00
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »