Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xpdf xpdf 3.0 vulnerabilities and exploits
(subscribe to this query)
454
VMScore
CVE-2005-3191
Multiple heap-based buffer overflows in the (1) DCTStream::readProgressiveSOF and (2) DCTStream::readBaselineSOF functions in the DCT stream parsing code (Stream.cc) in xpdf 3.01 and previous versions, as used in products such as (a) Poppler, (b) teTeX, (c) KDE kpdf, (d) pdftohtm...
Xpdf Xpdf 2.0
Xpdf Xpdf 3.0 Pl3
Xpdf Xpdf 1.0
Xpdf Xpdf 0.91
Xpdf Xpdf 2.3
Xpdf Xpdf 0.92
Xpdf Xpdf 3.0.1
Xpdf Xpdf 1.0a
Xpdf Xpdf 2.2
Xpdf Xpdf 3.0 Pl2
Xpdf Xpdf 2.1
Xpdf Xpdf 0.90
Xpdf Xpdf 3.0
Xpdf Xpdf 0.93
Xpdf Xpdf 1.1
454
VMScore
CVE-2005-3193
Heap-based buffer overflow in the JPXStream::readCodestream function in the JPX stream parsing code (JPXStream.c) for xpdf 3.01 and previous versions, as used in products such as (1) Poppler, (2) teTeX, (3) KDE kpdf, (4) CUPS, and (5) libextractor allows user-assisted malicious u...
Xpdf Xpdf 2.0
Xpdf Xpdf 3.0 Pl3
Xpdf Xpdf 1.0
Xpdf Xpdf 0.91
Xpdf Xpdf 2.3
Xpdf Xpdf 0.92
Xpdf Xpdf 3.0.1
Xpdf Xpdf 1.0a
Xpdf Xpdf 2.2
Xpdf Xpdf 3.0 Pl2
Xpdf Xpdf 2.1
Xpdf Xpdf 0.90
Xpdf Xpdf 3.0
Xpdf Xpdf 0.93
Xpdf Xpdf 1.1
445
VMScore
CVE-2005-3624
The CCITTFaxStream::CCITTFaxStream function in Stream.cc for xpdf, gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others allows malicious users to corrupt the heap via negative or large integers in a CCITTFaxDecode stream, which lead to integer overflows and integ...
Easy Software Products Cups 1.1.22
Kde Kpdf 3.4.3
Kde Kdegraphics 3.4.3
Tetex Tetex 3.0
Kde Koffice 1.4.1
Kde Kword 1.4.2
Poppler Poppler 0.4.2
Tetex Tetex 1.0.7
Sgi Propack 3.0
Easy Software Products Cups 1.1.23 Rc1
Kde Kdegraphics 3.2
Kde Koffice 1.4.2
Libextractor Libextractor
Easy Software Products Cups 1.1.22 Rc1
Xpdf Xpdf 3.0
Tetex Tetex 2.0.2
Tetex Tetex 2.0.1
Conectiva Linux 10.0
Kde Kpdf 3.2
Easy Software Products Cups 1.1.23
Kde Koffice 1.4
Tetex Tetex 2.0
445
VMScore
CVE-2005-3626
Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows malicious users to cause a denial of service (crash) via a crafted FlateDecode stream that triggers a null dereference.
Easy Software Products Cups 1.1.22
Kde Kpdf 3.4.3
Kde Kdegraphics 3.4.3
Tetex Tetex 3.0
Kde Koffice 1.4.1
Kde Kword 1.4.2
Poppler Poppler 0.4.2
Tetex Tetex 1.0.7
Sgi Propack 3.0
Easy Software Products Cups 1.1.23 Rc1
Kde Kdegraphics 3.2
Kde Koffice 1.4.2
Libextractor Libextractor
Easy Software Products Cups 1.1.22 Rc1
Xpdf Xpdf 3.0
Tetex Tetex 2.0.2
Tetex Tetex 2.0.1
Conectiva Linux 10.0
Kde Kpdf 3.2
Easy Software Products Cups 1.1.23
Kde Koffice 1.4
Tetex Tetex 2.0
445
VMScore
CVE-2002-1372
Common Unix Printing System (CUPS) 1.1.14 up to and including 1.1.17 does not properly check the return values of various file and socket operations, which could allow a remote malicious user to cause a denial of service (resource exhaustion) by causing file descriptors to be ass...
Apple Cups
Apple Mac Os X 10.2.2
Apple Mac Os X 10.2
Debian Debian Linux 2.2
Debian Debian Linux 3.0
187
VMScore
CVE-2005-2097
xpdf and kpdf do not properly validate the "loca" table in PDF files, which allows local users to cause a denial of service (disk consumption and hang) via a PDF file with a "broken" loca table, which causes a large temporary file to be created when xpdf attem...
Xpdf Xpdf 3.0 Pl3
Kde Kpdf
Xpdf Xpdf 3.0 Pl2
Xpdf Xpdf 3.0
187
VMScore
CVE-2004-1268
lppasswd in CUPS 1.1.22 ignores write errors when modifying the CUPS passwd file, which allows local users to corrupt the file by filling the associated file system and triggering the write errors.
Easy Software Products Cups 1.1.19 Rc5
Easy Software Products Cups 1.1.10
Easy Software Products Cups 1.1.16
Easy Software Products Cups 1.1.7
Easy Software Products Cups 1.0.4 8
Easy Software Products Cups 1.1.15
Easy Software Products Cups 1.1.21
Easy Software Products Cups 1.1.13
Easy Software Products Cups 1.1.17
Easy Software Products Cups 1.1.4 3
Easy Software Products Cups 1.1.4
Easy Software Products Cups 1.1.12
Easy Software Products Cups 1.1.22 Rc1
Easy Software Products Cups 1.1.4 5
Easy Software Products Cups 1.1.1
Easy Software Products Cups 1.1.20
Easy Software Products Cups 1.1.18
Easy Software Products Cups 1.1.19
Easy Software Products Cups 1.0.4
Easy Software Products Cups 1.1.14
Easy Software Products Cups 1.1.4 2
Easy Software Products Cups 1.1.6
187
VMScore
CVE-2004-1270
lppasswd in CUPS 1.1.22, when run in environments that do not ensure that file descriptors 0, 1, and 2 are open when lppasswd is called, does not verify that the passwd.new file is different from STDERR, which allows local users to control output to passwd.new via certain user in...
Easy Software Products Cups 1.1.19 Rc5
Easy Software Products Cups 1.1.10
Easy Software Products Cups 1.1.16
Easy Software Products Cups 1.1.7
Easy Software Products Cups 1.0.4 8
Easy Software Products Cups 1.1.15
Easy Software Products Cups 1.1.21
Easy Software Products Cups 1.1.13
Easy Software Products Cups 1.1.17
Easy Software Products Cups 1.1.4 3
Easy Software Products Cups 1.1.4
Easy Software Products Cups 1.1.12
Easy Software Products Cups 1.1.22 Rc1
Easy Software Products Cups 1.1.4 5
Easy Software Products Cups 1.1.1
Easy Software Products Cups 1.1.20
Easy Software Products Cups 1.1.18
Easy Software Products Cups 1.1.19
Easy Software Products Cups 1.0.4
Easy Software Products Cups 1.1.14
Easy Software Products Cups 1.1.4 2
Easy Software Products Cups 1.1.6
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
malicious code
XML injection
CVE-2024-28020
CVE-2024-35252
CVE-2024-5833
CVE-2024-30066
injection
CVE-2024-23282
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2