Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xpdf xpdf 2.1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-3191
Multiple heap-based buffer overflows in the (1) DCTStream::readProgressiveSOF and (2) DCTStream::readBaselineSOF functions in the DCT stream parsing code (Stream.cc) in xpdf 3.01 and previous versions, as used in products such as (a) Poppler, (b) teTeX, (c) KDE kpdf, (d) pdftohtm...
Xpdf Xpdf 2.0
Xpdf Xpdf 3.0 Pl3
Xpdf Xpdf 1.0
Xpdf Xpdf 0.91
Xpdf Xpdf 2.3
Xpdf Xpdf 0.92
Xpdf Xpdf 3.0.1
Xpdf Xpdf 1.0a
Xpdf Xpdf 2.2
Xpdf Xpdf 3.0 Pl2
Xpdf Xpdf 2.1
Xpdf Xpdf 0.90
Xpdf Xpdf 3.0
Xpdf Xpdf 0.93
Xpdf Xpdf 1.1
NA
CVE-2005-3193
Heap-based buffer overflow in the JPXStream::readCodestream function in the JPX stream parsing code (JPXStream.c) for xpdf 3.01 and previous versions, as used in products such as (1) Poppler, (2) teTeX, (3) KDE kpdf, (4) CUPS, and (5) libextractor allows user-assisted malicious u...
Xpdf Xpdf 2.0
Xpdf Xpdf 3.0 Pl3
Xpdf Xpdf 1.0
Xpdf Xpdf 0.91
Xpdf Xpdf 2.3
Xpdf Xpdf 0.92
Xpdf Xpdf 3.0.1
Xpdf Xpdf 1.0a
Xpdf Xpdf 2.2
Xpdf Xpdf 3.0 Pl2
Xpdf Xpdf 2.1
Xpdf Xpdf 0.90
Xpdf Xpdf 3.0
Xpdf Xpdf 0.93
Xpdf Xpdf 1.1
NA
CVE-2005-0064
Buffer overflow in the Decrypt::makeFileKey2 function in Decrypt.cc for xpdf 3.00 and previous versions allows remote malicious users to execute arbitrary code via a PDF file with a large /Encrypt /Length keyLength value.
Xpdf Xpdf 2.0
Xpdf Xpdf 0.91a
Xpdf Xpdf 0.6
Xpdf Xpdf 1.0
Xpdf Xpdf 0.93a
Xpdf Xpdf 0.5
Xpdf Xpdf 0.80
Xpdf Xpdf 0.91
Xpdf Xpdf 0.93c
Xpdf Xpdf 0.92a
Xpdf Xpdf 0.2
Xpdf Xpdf 2.3
Xpdf Xpdf 0.92
Xpdf Xpdf 0.93b
Xpdf Xpdf 1.0a
Xpdf Xpdf 0.5a
Xpdf Xpdf 0.92c
Xpdf Xpdf 0.3
Xpdf Xpdf 0.7a
Xpdf Xpdf 0.92d
Xpdf Xpdf 2.2
Xpdf Xpdf 0.92b
NA
CVE-2006-1244
Unspecified vulnerability in certain versions of xpdf after 3.00, as used in various products including (a) pdfkit.framework, (b) gpdf, (c) pdftohtml, and (d) libextractor, has unknown impact and user-assisted attack vectors, possibly involving errors in (1) gmem.c, (2) SplashXPa...
Xpdf Xpdf 2.0
Libextractor Libextractor 0.3.11
Xpdf Xpdf 3.0 Pl3
Xpdf Xpdf 1.0
Libextractor Libextractor 0.4.1
Libextractor Libextractor 0.4.2
Xpdf Xpdf 3.0.1 Pl1
Xpdf Xpdf 0.91
Libextractor Libextractor 0.4
Libextractor Libextractor 0.3.8
Xpdf Xpdf 2.3
Xpdf Xpdf 0.92
Xpdf Xpdf 3.0.1
Gnome Gpdf 2.8.2
Xpdf Xpdf 1.0a
Libextractor Libextractor 0.3.9
Xpdf Xpdf 2.2
Xpdf Xpdf 3.0 Pl2
Xpdf Xpdf 2.1
Xpdf Xpdf 0.90
Xpdf Xpdf 3.0
Libextractor Libextractor 0.5
NA
CVE-2002-1384
Integer overflow in pdftops, as used in Xpdf 2.01 and previous versions, xpdf-i, and CUPS prior to 1.1.18, allows local users to execute arbitrary code via a ColorSpace entry with a large number of elements, as demonstrated by cups-pdf.
Xpdf Xpdf 2.0
Easy Software Products Cups 1.1.10
Xpdf Xpdf 1.0
Easy Software Products Cups 1.1.7
Xpdf Xpdf 0.91
Easy Software Products Cups 1.0.4 8
Easy Software Products Cups 1.1.13
Xpdf Xpdf 1.0a
Easy Software Products Cups 1.1.17
Easy Software Products Cups 1.1.4 3
Easy Software Products Cups 1.1.4
Xpdf Xpdf 2.1
Xpdf Xpdf 0.90
Easy Software Products Cups 1.1.4 5
Easy Software Products Cups 1.1.1
Easy Software Products Cups 1.0.4
Easy Software Products Cups 1.1.14
Easy Software Products Cups 1.1.4 2
Xpdf Xpdf 1.1
Easy Software Products Cups 1.1.6
NA
CVE-2004-0888
Multiple integer overflows in xpdf 2.0 and 3.0, and other packages that use xpdf code such as CUPS, gpdf, and kdegraphics, allow remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code, a different set of vulnerabilities than those identifi...
Pdftohtml Pdftohtml 0.32a
Easy Software Products Cups 1.1.19 Rc5
Xpdf Xpdf 2.0
Easy Software Products Cups 1.1.10
Easy Software Products Cups 1.1.16
Xpdf Xpdf 1.0
Kde Koffice 1.3 Beta2
Easy Software Products Cups 1.1.7
Pdftohtml Pdftohtml 0.35
Xpdf Xpdf 0.91
Easy Software Products Cups 1.0.4 8
Gnome Gpdf 0.112
Kde Koffice 1.3.3
Pdftohtml Pdftohtml 0.32b
Easy Software Products Cups 1.1.15
Kde Koffice 1.3 Beta3
Easy Software Products Cups 1.1.13
Pdftohtml Pdftohtml 0.33a
Xpdf Xpdf 2.3
Kde Koffice 1.3
Tetex Tetex 1.0.7
Xpdf Xpdf 0.92
NA
CVE-2004-0889
Multiple integer overflows in xpdf 3.0, and other packages that use xpdf code such as CUPS, allow remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code, a different set of vulnerabilities than those identified by CVE-2004-0888.
Pdftohtml Pdftohtml 0.32a
Easy Software Products Cups 1.1.19 Rc5
Xpdf Xpdf 2.0
Easy Software Products Cups 1.1.10
Easy Software Products Cups 1.1.16
Xpdf Xpdf 1.0
Kde Koffice 1.3 Beta2
Easy Software Products Cups 1.1.7
Pdftohtml Pdftohtml 0.35
Xpdf Xpdf 0.91
Easy Software Products Cups 1.0.4 8
Gnome Gpdf 0.112
Kde Koffice 1.3.3
Pdftohtml Pdftohtml 0.32b
Easy Software Products Cups 1.1.15
Kde Koffice 1.3 Beta3
Easy Software Products Cups 1.1.13
Pdftohtml Pdftohtml 0.33a
Xpdf Xpdf 2.3
Kde Koffice 1.3
Tetex Tetex 1.0.7
Xpdf Xpdf 0.92
NA
CVE-2003-0434
Various PDF viewers including (1) Adobe Acrobat 5.06 and (2) Xpdf 1.01 allow remote malicious users to execute arbitrary commands via shell metacharacters in an embedded hyperlink.
Adobe Acrobat 5.0.6
Xpdf Xpdf 1.1
Mandrakesoft Mandrake Linux Corporate Server 2.1
Redhat Enterprise Linux 2.1
Redhat Linux Advanced Workstation 2.1
Redhat Linux 7.2
Redhat Linux 8.0
Redhat Linux 7.3
Mandrakesoft Mandrake Linux 9.0
Redhat Linux 9.0
Mandrakesoft Mandrake Linux 9.1
Redhat Linux 7.1
1 EDB exploit
NA
CVE-2005-0206
The patch for integer overflow vulnerabilities in Xpdf 2.0 and 3.0 (CVE-2004-0888) is incomplete for 64-bit architectures on certain Linux distributions such as Red Hat, which could leave Xpdf users exposed to the original vulnerabilities.
Pdftohtml Pdftohtml 0.32a
Easy Software Products Cups 1.1.19 Rc5
Xpdf Xpdf 2.0
Easy Software Products Cups 1.1.10
Easy Software Products Cups 1.1.16
Xpdf Xpdf 1.0
Kde Koffice 1.3 Beta2
Sgi Propack 3.0
Easy Software Products Cups 1.1.7
Pdftohtml Pdftohtml 0.35
Xpdf Xpdf 0.91
Easy Software Products Cups 1.0.4 8
Gnome Gpdf 0.112
Kde Koffice 1.3.3
Pdftohtml Pdftohtml 0.32b
Easy Software Products Cups 1.1.15
Kde Koffice 1.3 Beta3
Gnome Gpdf 0.110
Easy Software Products Cups 1.1.13
Pdftohtml Pdftohtml 0.33a
Xpdf Xpdf 2.3
Kde Koffice 1.3
NA
CVE-2005-3624
The CCITTFaxStream::CCITTFaxStream function in Stream.cc for xpdf, gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others allows malicious users to corrupt the heap via negative or large integers in a CCITTFaxDecode stream, which lead to integer overflows and integ...
Easy Software Products Cups 1.1.22
Kde Kpdf 3.4.3
Kde Kdegraphics 3.4.3
Tetex Tetex 3.0
Kde Koffice 1.4.1
Kde Kword 1.4.2
Poppler Poppler 0.4.2
Tetex Tetex 1.0.7
Sgi Propack 3.0
Easy Software Products Cups 1.1.23 Rc1
Kde Kdegraphics 3.2
Kde Koffice 1.4.2
Libextractor Libextractor
Easy Software Products Cups 1.1.22 Rc1
Xpdf Xpdf 3.0
Tetex Tetex 2.0.2
Tetex Tetex 2.0.1
Conectiva Linux 10.0
Kde Kpdf 3.2
Easy Software Products Cups 1.1.23
Kde Koffice 1.4
Tetex Tetex 2.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30078
CVE-2024-37896
code injection
CVE-2024-3080
CVE-2024-5172
cross-site request forgery
CVE-2024-6111
firmware
CVE-2024-38504
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »