Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xpdf xpdf 0.90 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2000-0727
xpdf PDF viewer client earlier than 0.91 does not properly launch a web browser for embedded URL's, which allows an malicious user to execute arbitrary commands via a URL that contains shell metacharacters.
Xpdf Xpdf 0.90
NA
CVE-2000-0728
xpdf PDF viewer client earlier than 0.91 allows local users to overwrite arbitrary files via a symlink attack.
Xpdf Xpdf 0.90
NA
CVE-2005-3191
Multiple heap-based buffer overflows in the (1) DCTStream::readProgressiveSOF and (2) DCTStream::readBaselineSOF functions in the DCT stream parsing code (Stream.cc) in xpdf 3.01 and previous versions, as used in products such as (a) Poppler, (b) teTeX, (c) KDE kpdf, (d) pdftohtm...
Xpdf Xpdf 1.0
Xpdf Xpdf 1.0a
Xpdf Xpdf 3.0 Pl2
Xpdf Xpdf 3.0 Pl3
Xpdf Xpdf 0.92
Xpdf Xpdf 0.93
Xpdf Xpdf 3.0
Xpdf Xpdf 3.0.1
Xpdf Xpdf 1.1
Xpdf Xpdf 2.0
Xpdf Xpdf 0.90
Xpdf Xpdf 0.91
Xpdf Xpdf 2.1
Xpdf Xpdf 2.2
Xpdf Xpdf 2.3
NA
CVE-2005-3193
Heap-based buffer overflow in the JPXStream::readCodestream function in the JPX stream parsing code (JPXStream.c) for xpdf 3.01 and previous versions, as used in products such as (1) Poppler, (2) teTeX, (3) KDE kpdf, (4) CUPS, and (5) libextractor allows user-assisted malicious u...
Xpdf Xpdf 0.93
Xpdf Xpdf 1.0
Xpdf Xpdf 1.0a
Xpdf Xpdf 3.0.1
Xpdf Xpdf 3.0 Pl2
Xpdf Xpdf 0.90
Xpdf Xpdf 2.1
Xpdf Xpdf 2.2
Xpdf Xpdf 0.91
Xpdf Xpdf 0.92
Xpdf Xpdf 2.3
Xpdf Xpdf 3.0
Xpdf Xpdf 1.1
Xpdf Xpdf 2.0
Xpdf Xpdf 3.0 Pl3
NA
CVE-2005-0064
Buffer overflow in the Decrypt::makeFileKey2 function in Decrypt.cc for xpdf 3.00 and previous versions allows remote malicious users to execute arbitrary code via a PDF file with a large /Encrypt /Length keyLength value.
Xpdf Xpdf 0.4
Xpdf Xpdf 0.5
Xpdf Xpdf 0.91
Xpdf Xpdf 0.91a
Xpdf Xpdf 0.92e
Xpdf Xpdf 0.93
Xpdf Xpdf 2.0
Xpdf Xpdf 2.1
Xpdf Xpdf 0.5a
Xpdf Xpdf 0.6
Xpdf Xpdf 0.91b
Xpdf Xpdf 0.91c
Xpdf Xpdf 0.93a
Xpdf Xpdf 0.93b
Xpdf Xpdf 2.2
Xpdf Xpdf 2.3
Xpdf Xpdf 0.7
Xpdf Xpdf 0.7a
Xpdf Xpdf 0.92
Xpdf Xpdf 0.92a
Xpdf Xpdf 0.93c
Xpdf Xpdf 1.0
NA
CVE-2006-1244
Unspecified vulnerability in certain versions of xpdf after 3.00, as used in various products including (a) pdfkit.framework, (b) gpdf, (c) pdftohtml, and (d) libextractor, has unknown impact and user-assisted attack vectors, possibly involving errors in (1) gmem.c, (2) SplashXPa...
Libextractor Libextractor 0.3.8
Libextractor Libextractor 0.3.9
Xpdf Xpdf 0.92
Xpdf Xpdf 0.93
Xpdf Xpdf 1.0
Xpdf Xpdf 3.0
Xpdf Xpdf 3.0.1
Libextractor Libextractor 0.3.6
Libextractor Libextractor 0.3.7
Xpdf Xpdf 0.90
Xpdf Xpdf 0.91
Xpdf Xpdf 2.2
Xpdf Xpdf 2.3
Libextractor Libextractor 0.4
Libextractor Libextractor 0.4.1
Xpdf Xpdf 1.0a
Xpdf Xpdf 1.1
Xpdf Xpdf 3.0.1 Pl1
Xpdf Xpdf 3.0 Pl2
Gnome Gpdf 2.8.2
Libextractor Libextractor 0.3.11
Libextractor Libextractor 0.4.2
NA
CVE-2002-1384
Integer overflow in pdftops, as used in Xpdf 2.01 and previous versions, xpdf-i, and CUPS prior to 1.1.18, allows local users to execute arbitrary code via a ColorSpace entry with a large number of elements, as demonstrated by cups-pdf.
Easy Software Products Cups 1.0.4
Easy Software Products Cups 1.1.4
Easy Software Products Cups 1.1.4 2
Xpdf Xpdf 1.0a
Xpdf Xpdf 1.1
Easy Software Products Cups 1.0.4 8
Easy Software Products Cups 1.1.1
Easy Software Products Cups 1.1.4 3
Easy Software Products Cups 1.1.4 5
Xpdf Xpdf 2.0
Xpdf Xpdf 2.1
Easy Software Products Cups 1.1.10
Easy Software Products Cups 1.1.13
Easy Software Products Cups 1.1.6
Easy Software Products Cups 1.1.7
Xpdf Xpdf 0.90
Easy Software Products Cups 1.1.14
Easy Software Products Cups 1.1.17
Xpdf Xpdf 0.91
Xpdf Xpdf 1.0
NA
CVE-2009-1144
Untrusted search path vulnerability in the Gentoo package of Xpdf prior to 3.02-r2 allows local users to gain privileges via a Trojan horse xpdfrc file in the current working directory, related to an unset SYSTEM_XPDFRC macro in a Gentoo build process that uses the poppler librar...
Glyphandcog Xpdfreader 2.03
Glyphandcog Xpdfreader 2.02
Foolabs Xpdf 0.93b
Foolabs Xpdf 0.93a
Glyphandcog Xpdfreader 0.91
Foolabs Xpdf 0.91c
Foolabs Xpdf 0.91b
Foolabs Xpdf 0.5a
Glyphandcog Xpdfreader 0.5
Glyphandcog Xpdfreader 2.01
Glyphandcog Xpdfreader 2.00
Glyphandcog Xpdfreader 0.93
Foolabs Xpdf 0.92e
Foolabs Xpdf 0.91a
Glyphandcog Xpdfreader 0.90
Glyphandcog Xpdfreader 0.4
Glyphandcog Xpdfreader 0.3
Glyphandcog Xpdfreader 1.01
Glyphandcog Xpdfreader 1.00
Foolabs Xpdf 0.92d
Foolabs Xpdf 0.92c
Glyphandcog Xpdfreader 0.80
NA
CVE-2009-0165
Integer overflow in the JBIG2 decoder in Xpdf 3.02pl2 and previous versions, as used in Poppler and other products, when running on Mac OS X, has unspecified impact, related to "g*allocn."
Foolabs Xpdf 0.91a
Glyphandcog Xpdfreader 0.90
Glyphandcog Xpdfreader 0.4
Glyphandcog Xpdfreader 0.3
Glyphandcog Xpdfreader 1.01
Foolabs Xpdf 0.93c
Foolabs Xpdf 0.92d
Foolabs Xpdf 0.92a
Foolabs Xpdf 0.92b
Glyphandcog Xpdfreader
Glyphandcog Xpdfreader 3.01
Glyphandcog Xpdfreader 0.91
Glyphandcog Xpdfreader 0.6
Foolabs Xpdf 0.5a
Glyphandcog Xpdfreader 2.03
Glyphandcog Xpdfreader 2.00
Foolabs Xpdf 0.92e
Glyphandcog Xpdfreader 0.93
Glyphandcog Xpdfreader 0.80
Foolabs Xpdf 0.7a
Glyphandcog Xpdfreader 0.92
Glyphandcog Xpdfreader 0.2
NA
CVE-2009-0195
Heap-based buffer overflow in Xpdf 3.02pl2 and previous versions, CUPS 1.3.9, and probably other products, allows remote malicious users to execute arbitrary code via a PDF file with crafted JBIG2 symbol dictionary segments.
Glyphandcog Xpdfreader
Glyphandcog Xpdfreader 0.90
Glyphandcog Xpdfreader 0.6
Foolabs Xpdf 0.5a
Foolabs Xpdf 0.92c
Foolabs Xpdf 0.92d
Glyphandcog Xpdfreader 2.02
Glyphandcog Xpdfreader 2.00
Glyphandcog Xpdfreader 3.00
Apple Cups 1.3.9
Glyphandcog Xpdfreader 0.4
Glyphandcog Xpdfreader 0.3
Glyphandcog Xpdfreader 0.92
Glyphandcog Xpdfreader 0.91
Foolabs Xpdf 0.92e
Glyphandcog Xpdfreader 1.00
Glyphandcog Xpdfreader 1.01
Foolabs Xpdf 0.93b
Glyphandcog Xpdfreader 0.93
Glyphandcog Xpdfreader 0.80
Foolabs Xpdf 0.7a
Glyphandcog Xpdfreader 0.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site request forgery
CVE-2024-34351
CVE-2024-1076
CVE-2024-25522
CVE-2024-34547
CVE-2024-4644
unauthorized
remote
CVE-2024-4671
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »