Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xpdfreader xpdf 3.02 vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2012-2142
The error function in Error.cc in poppler prior to 0.21.4 allows remote malicious users to execute arbitrary commands via a PDF containing an escape sequence for a terminal emulator.
Freedesktop Poppler
Xpdfreader Xpdf 3.02
Redhat Enterprise Linux 5.0
Redhat Enterprise Linux 6.0
Opensuse Opensuse 12.2
4.3
CVSSv2
CVE-2011-1552
t1lib 5.1.2 and previous versions, as used in Xpdf prior to 3.02pl6, teTeX, and other products, reads from invalid memory locations, which allows remote malicious users to cause a denial of service (application crash) via a crafted Type 1 font in a PDF document, a different vulne...
T1lib T1lib 5.0.2
T1lib T1lib 5.0.1
T1lib T1lib 5.0.0
T1lib T1lib 0.7
T1lib T1lib 0.8
T1lib T1lib 5.1.1
T1lib T1lib 5.1.0
T1lib T1lib 0.5
T1lib T1lib 0.6
T1lib T1lib 1.0.1
T1lib T1lib 1.1.0
T1lib T1lib 0.1
T1lib T1lib 0.2
T1lib T1lib 0.9
T1lib T1lib 0.9.1
T1lib T1lib 1.3
T1lib T1lib 1.3.1
T1lib T1lib 0.3
T1lib T1lib 0.4
T1lib T1lib 0.9.2
T1lib T1lib 1.0
T1lib T1lib
4.3
CVSSv2
CVE-2011-1553
Use-after-free vulnerability in t1lib 5.1.2 and previous versions, as used in Xpdf prior to 3.02pl6, teTeX, and other products, allows remote malicious users to cause a denial of service (application crash) via a PDF document containing a crafted Type 1 font that triggers an inva...
T1lib T1lib 0.1
T1lib T1lib 0.2
T1lib T1lib 0.9.1
T1lib T1lib 0.9.2
T1lib T1lib 1.3.1
T1lib T1lib
T1lib T1lib 5.1.0
T1lib T1lib 5.0.2
T1lib T1lib 0.5
T1lib T1lib 0.6
T1lib T1lib 1.1.0
T1lib T1lib 1.1.1
T1lib T1lib 5.0.1
T1lib T1lib 5.0.0
T1lib T1lib 0.7
T1lib T1lib 0.8
T1lib T1lib 0.9
T1lib T1lib 1.2
T1lib T1lib 1.3
T1lib T1lib 5.1.1
T1lib T1lib 0.3
T1lib T1lib 0.4
4.3
CVSSv2
CVE-2011-1554
Off-by-one error in t1lib 5.1.2 and previous versions, as used in Xpdf prior to 3.02pl6, teTeX, and other products, allows remote malicious users to cause a denial of service (application crash) via a PDF document containing a crafted Type 1 font that triggers an invalid memory r...
T1lib T1lib 5.0.0
T1lib T1lib 0.1
T1lib T1lib 0.2
T1lib T1lib 0.9
T1lib T1lib 0.9.1
T1lib T1lib 1.3
T1lib T1lib 1.3.1
T1lib T1lib 0.3
T1lib T1lib 0.4
T1lib T1lib 0.9.2
T1lib T1lib 1.0
T1lib T1lib
T1lib T1lib 5.0.2
T1lib T1lib 5.0.1
T1lib T1lib 0.7
T1lib T1lib 0.8
T1lib T1lib 1.1.1
T1lib T1lib 1.2
T1lib T1lib 5.1.1
T1lib T1lib 5.1.0
T1lib T1lib 0.5
T1lib T1lib 0.6
6.8
CVSSv2
CVE-2011-0764
t1lib 5.1.2 and previous versions, as used in Xpdf prior to 3.02pl6, teTeX, and other products, uses an invalid pointer in conjunction with a dereference operation, which allows remote malicious users to execute arbitrary code via a crafted Type 1 font in a PDF document, as demon...
T1lib T1lib 5.0.2
T1lib T1lib 5.0.1
T1lib T1lib 0.6
T1lib T1lib 0.7
T1lib T1lib 1.1.1
T1lib T1lib 1.2
T1lib T1lib 0.2
T1lib T1lib 0.3
T1lib T1lib 0.9.1
T1lib T1lib 0.9.2
T1lib T1lib
T1lib T1lib 5.0.0
T1lib T1lib 0.1
T1lib T1lib 0.8
T1lib T1lib 0.9
T1lib T1lib 1.3
T1lib T1lib 1.3.1
T1lib T1lib 5.1.1
T1lib T1lib 5.1.0
T1lib T1lib 0.4
T1lib T1lib 0.5
T1lib T1lib 1.0
7.5
CVSSv2
CVE-2010-3702
The Gfx::getPos function in the PDF parser in xpdf prior to 3.02pl5, poppler 0.8.7 and possibly other versions up to 0.15.1, CUPS, kdegraphics, and possibly other products allows context-dependent malicious users to cause a denial of service (crash) via unknown vectors that trigg...
Apple Cups
Freedesktop Poppler
Xpdfreader Xpdf
Xpdfreader Xpdf 3.02
Fedoraproject Fedora 12
Fedoraproject Fedora 13
Fedoraproject Fedora 14
Opensuse Opensuse 11.1
Opensuse Opensuse 11.2
Opensuse Opensuse 11.3
Suse Linux Enterprise Server 9
Suse Linux Enterprise Server 10
Suse Linux Enterprise Server 11
Debian Debian Linux 5.0
Debian Debian Linux 6.0
Redhat Enterprise Linux Desktop 5.0
Redhat Enterprise Linux Server 5.0
Redhat Enterprise Linux Workstation 5.0
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 9.04
Canonical Ubuntu Linux 9.10
6.8
CVSSv2
CVE-2010-3704
The FoFiType1::parse function in fofi/FoFiType1.cc in the PDF parser in xpdf prior to 3.02pl5, poppler 0.8.7 and possibly other versions up to 0.15.1, kdegraphics, and possibly other products allows context-dependent malicious users to cause a denial of service (crash) and possib...
Poppler Poppler 0.9.0
Poppler Poppler 0.9.1
Poppler Poppler 0.10.4
Poppler Poppler 0.10.5
Poppler Poppler 0.12.0
Poppler Poppler 0.12.1
Poppler Poppler 0.13.3
Poppler Poppler 0.13.4
Poppler Poppler 0.15.1
Poppler Poppler 0.10.0
Poppler Poppler 0.10.1
Poppler Poppler 0.11.0
Poppler Poppler 0.11.1
Poppler Poppler 0.12.4
Poppler Poppler 0.13.0
Poppler Poppler 0.14.3
Poppler Poppler 0.14.4
Poppler Poppler 0.10.2
Poppler Poppler 0.10.3
Poppler Poppler 0.11.2
Poppler Poppler 0.11.3
Poppler Poppler 0.13.1
9.3
CVSSv2
CVE-2009-3603
Integer overflow in the SplashBitmap::SplashBitmap function in Xpdf 3.x prior to 3.02pl4 and Poppler prior to 0.12.1 might allow remote malicious users to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow. NOTE: some of these details are...
Poppler Poppler 0.7.3
Poppler Poppler 0.3.2
Poppler Poppler 0.10.3
Poppler Poppler 0.4.0
Poppler Poppler 0.9.3
Poppler Poppler 0.10.1
Poppler Poppler 0.10.0
Poppler Poppler 0.10.7
Poppler Poppler 0.7.1
Poppler Poppler 0.6.1
Poppler Poppler 0.3.1
Poppler Poppler 0.11.3
Poppler Poppler 0.10.6
Foolabs Xpdf 3.02pl3
Poppler Poppler 0.5.2
Poppler Poppler 0.6.0
Poppler Poppler 0.3.3
Poppler Poppler 0.4.2
Poppler Poppler 0.10.4
Poppler Poppler 0.9.2
Poppler Poppler 0.6.4
Poppler Poppler 0.1.2
9.3
CVSSv2
CVE-2009-3604
The Splash::drawImage function in Splash.cc in Xpdf 2.x and 3.x prior to 3.02pl4, and Poppler 0.x, as used in GPdf and kdegraphics KPDF, does not properly allocate memory, which allows remote malicious users to cause a denial of service (application crash) or possibly execute arb...
Foolabs Xpdf 3.02pl1
Foolabs Xpdf 3.02pl2
Foolabs Xpdf 3.02pl3
Glyphandcog Xpdfreader 2.00
Glyphandcog Xpdfreader 2.01
Glyphandcog Xpdfreader 2.02
Glyphandcog Xpdfreader 2.03
Glyphandcog Xpdfreader 3.00
Glyphandcog Xpdfreader 3.01
Glyphandcog Xpdfreader 3.02
Poppler Poppler 0.1
Poppler Poppler 0.1.1
Poppler Poppler 0.1.2
Poppler Poppler 0.2.0
Poppler Poppler 0.3.0
Poppler Poppler 0.3.1
Poppler Poppler 0.3.2
Poppler Poppler 0.3.3
Poppler Poppler 0.4.0
Poppler Poppler 0.4.1
Poppler Poppler 0.4.2
Poppler Poppler 0.4.3
9.3
CVSSv2
CVE-2009-3606
Integer overflow in the PSOutputDev::doImageL1Sep function in Xpdf prior to 3.02pl4, and Poppler 0.x, as used in kdegraphics KPDF, might allow remote malicious users to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow.
Foolabs Xpdf 3.02pl1
Foolabs Xpdf 3.02pl2
Foolabs Xpdf 3.02pl3
Glyphandcog Xpdfreader 3.00
Glyphandcog Xpdfreader 3.01
Glyphandcog Xpdfreader 3.02
Poppler Poppler 0.1
Poppler Poppler 0.1.1
Poppler Poppler 0.1.2
Poppler Poppler 0.2.0
Poppler Poppler 0.3.0
Poppler Poppler 0.3.1
Poppler Poppler 0.3.2
Poppler Poppler 0.3.3
Poppler Poppler 0.4.0
Poppler Poppler 0.4.1
Poppler Poppler 0.4.2
Poppler Poppler 0.4.3
Poppler Poppler 0.4.4
Poppler Poppler 0.5.0
Poppler Poppler 0.5.1
Poppler Poppler 0.5.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site request forgery
CVE-2024-34351
CVE-2024-1076
CVE-2024-25522
CVE-2024-34547
CVE-2024-4644
unauthorized
remote
CVE-2024-4671
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »