Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
koffice vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2007-5392
Integer overflow in the DCTStream::reset method in xpdf/Stream.cc in Xpdf 3.02p11 allows remote malicious users to execute arbitrary code via a crafted PDF file, resulting in a heap-based buffer overflow.
Xpdf Xpdf 3.0.1 Pl1
7.6
CVSSv2
CVE-2007-4352
Array index error in the DCTStream::readProgressiveDataUnit method in xpdf/Stream.cc in Xpdf 3.02pl1, as used in poppler, teTeX, KDE, KOffice, CUPS, and other products, allows remote malicious users to trigger memory corruption and execute arbitrary code via a crafted PDF file.
Xpdf Xpdf 3.0.1 Pl1
7.6
CVSSv2
CVE-2006-1244
Unspecified vulnerability in certain versions of xpdf after 3.00, as used in various products including (a) pdfkit.framework, (b) gpdf, (c) pdftohtml, and (d) libextractor, has unknown impact and user-assisted attack vectors, possibly involving errors in (1) gmem.c, (2) SplashXPa...
Libextractor Libextractor 0.3.8
Libextractor Libextractor 0.3.9
Xpdf Xpdf 0.92
Xpdf Xpdf 0.93
Xpdf Xpdf 1.0
Xpdf Xpdf 3.0
Xpdf Xpdf 3.0.1
Libextractor Libextractor 0.3.6
Libextractor Libextractor 0.3.7
Xpdf Xpdf 0.90
Xpdf Xpdf 0.91
Xpdf Xpdf 2.2
Xpdf Xpdf 2.3
Libextractor Libextractor 0.4
Libextractor Libextractor 0.4.1
Xpdf Xpdf 1.0a
Xpdf Xpdf 1.1
Xpdf Xpdf 3.0.1 Pl1
Xpdf Xpdf 3.0 Pl2
Gnome Gpdf 2.8.2
Libextractor Libextractor 0.3.11
Libextractor Libextractor 0.4.2
9.3
CVSSv2
CVE-2007-5393
Heap-based buffer overflow in the CCITTFaxStream::lookChar method in xpdf/Stream.cc in Xpdf 3.02p11 allows remote malicious users to execute arbitrary code via a PDF file that contains a crafted CCITTFaxDecode filter.
Xpdf Xpdf 3.02p11
6.8
CVSSv2
CVE-2007-0104
The Adobe PDF specification 1.3, as implemented by (a) xpdf 3.0.1 patch 2, (b) kpdf in KDE prior to 3.5.5, (c) poppler prior to 0.5.4, and other products, allows remote malicious users to have an unknown impact, possibly including denial of service (infinite loop), arbitrary code...
Xpdf Xpdf 3.0 Pl2
Xpdf Xpdf 3.0
Xpdf Xpdf 3.0.1
Xpdf Xpdf 3.0.1 Pl1
Xpdf Xpdf 3.0.1 Pl2
Kde Kde 3.2
Kde Kde 3.4
Kde Kde 3.4.1
Kde Kde 3.2.3
Kde Kde 3.3
Kde Kde 3.5
Kde Kde 3.2.1
Kde Kde 3.2.2
Kde Kde 3.4.2
Kde Kde 3.4.3
Kde Kde 3.3.1
Kde Kde 3.3.2
6.8
CVSSv2
CVE-2009-0195
Heap-based buffer overflow in Xpdf 3.02pl2 and previous versions, CUPS 1.3.9, and probably other products, allows remote malicious users to execute arbitrary code via a PDF file with crafted JBIG2 symbol dictionary segments.
Glyphandcog Xpdfreader
Glyphandcog Xpdfreader 0.90
Glyphandcog Xpdfreader 0.6
Foolabs Xpdf 0.5a
Foolabs Xpdf 0.92c
Foolabs Xpdf 0.92d
Glyphandcog Xpdfreader 2.02
Glyphandcog Xpdfreader 2.00
Glyphandcog Xpdfreader 3.00
Apple Cups 1.3.9
Glyphandcog Xpdfreader 0.4
Glyphandcog Xpdfreader 0.3
Glyphandcog Xpdfreader 0.92
Glyphandcog Xpdfreader 0.91
Foolabs Xpdf 0.92e
Glyphandcog Xpdfreader 1.00
Glyphandcog Xpdfreader 1.01
Foolabs Xpdf 0.93b
Glyphandcog Xpdfreader 0.93
Glyphandcog Xpdfreader 0.80
Foolabs Xpdf 0.7a
Glyphandcog Xpdfreader 0.5
5.1
CVSSv2
CVE-2005-3193
Heap-based buffer overflow in the JPXStream::readCodestream function in the JPX stream parsing code (JPXStream.c) for xpdf 3.01 and previous versions, as used in products such as (1) Poppler, (2) teTeX, (3) KDE kpdf, (4) CUPS, and (5) libextractor allows user-assisted malicious u...
Xpdf Xpdf 0.93
Xpdf Xpdf 1.0
Xpdf Xpdf 1.0a
Xpdf Xpdf 3.0.1
Xpdf Xpdf 3.0 Pl2
Xpdf Xpdf 0.90
Xpdf Xpdf 2.1
Xpdf Xpdf 2.2
Xpdf Xpdf 0.91
Xpdf Xpdf 0.92
Xpdf Xpdf 2.3
Xpdf Xpdf 3.0
Xpdf Xpdf 1.1
Xpdf Xpdf 2.0
Xpdf Xpdf 3.0 Pl3
6.8
CVSSv2
CVE-2007-3387
Integer overflow in the StreamPredictor::StreamPredictor function in xpdf 3.02, as used in (1) poppler prior to 0.5.91, (2) gpdf prior to 2.8.2, (3) kpdf, (4) kdegraphics, (5) CUPS, (6) PDFedit, and other products, might allow remote malicious users to execute arbitrary code via ...
Xpdfreader Xpdf 3.02
Apple Cups
Freedesktop Poppler
Gpdf Project Gpdf
Debian Debian Linux 3.1
Debian Debian Linux 4.0
Canonical Ubuntu Linux 7.04
Canonical Ubuntu Linux 6.10
Canonical Ubuntu Linux 6.06
9.3
CVSSv2
CVE-2009-3608
Integer overflow in the ObjectStream::ObjectStream function in XRef.cc in Xpdf 3.x prior to 3.02pl4 and Poppler prior to 0.12.1, as used in GPdf, kdegraphics KPDF, CUPS pdftops, and teTeX, might allow remote malicious users to execute arbitrary code via a crafted PDF document tha...
Foolabs Xpdf 3.02pl1
Foolabs Xpdf 3.02pl2
Foolabs Xpdf 3.02pl3
Glyphandcog Xpdfreader 3.00
Glyphandcog Xpdfreader 3.01
Glyphandcog Xpdfreader 3.02
Poppler Poppler
Poppler Poppler 0.1
Poppler Poppler 0.1.1
Poppler Poppler 0.1.2
Poppler Poppler 0.2.0
Poppler Poppler 0.3.0
Poppler Poppler 0.3.1
Poppler Poppler 0.3.2
Poppler Poppler 0.3.3
Poppler Poppler 0.4.0
Poppler Poppler 0.4.1
Poppler Poppler 0.4.2
Poppler Poppler 0.4.3
Poppler Poppler 0.4.4
Poppler Poppler 0.5.0
Poppler Poppler 0.5.1
6.8
CVSSv2
CVE-2008-1693
The CairoFont::create function in CairoFontEngine.cc in Poppler, possibly prior to 0.8.0, as used in Xpdf, Evince, ePDFview, KWord, and other applications, does not properly handle embedded fonts in PDF files, which allows remote malicious users to execute arbitrary code via a cr...
Poppler Poppler 0.1
Poppler Poppler 0.1.1
Poppler Poppler 0.4.0
Poppler Poppler 0.4.1
Poppler Poppler 0.5.3
Poppler Poppler 0.5.4
Poppler Poppler 0.7.0
Poppler Poppler 0.7.1
Poppler Poppler 0.1.2
Poppler Poppler 0.2.0
Poppler Poppler 0.4.2
Poppler Poppler 0.4.3
Poppler Poppler 0.5.9
Poppler Poppler 0.5.91
Poppler Poppler 0.7.2
Poppler Poppler
Poppler Poppler 0.3.0
Poppler Poppler 0.3.1
Poppler Poppler 0.4.4
Poppler Poppler 0.5.0
Poppler Poppler 0.6.0
Poppler Poppler 0.6.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »