Integer overflow in the ObjectStream::ObjectStream function in XRef.cc in Xpdf 3.x prior to 3.02pl4 and Poppler prior to 0.12.1, as used in GPdf, kdegraphics KPDF, CUPS pdftops, and teTeX, might allow remote malicious users to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
foolabs xpdf 3.02pl1 |
||
foolabs xpdf 3.02pl2 |
||
foolabs xpdf 3.02pl3 |
||
glyphandcog xpdfreader 3.00 |
||
glyphandcog xpdfreader 3.01 |
||
glyphandcog xpdfreader 3.02 |
||
poppler poppler |
||
poppler poppler 0.1 |
||
poppler poppler 0.1.1 |
||
poppler poppler 0.1.2 |
||
poppler poppler 0.2.0 |
||
poppler poppler 0.3.0 |
||
poppler poppler 0.3.1 |
||
poppler poppler 0.3.2 |
||
poppler poppler 0.3.3 |
||
poppler poppler 0.4.0 |
||
poppler poppler 0.4.1 |
||
poppler poppler 0.4.2 |
||
poppler poppler 0.4.3 |
||
poppler poppler 0.4.4 |
||
poppler poppler 0.5.0 |
||
poppler poppler 0.5.1 |
||
poppler poppler 0.5.2 |
||
poppler poppler 0.5.3 |
||
poppler poppler 0.5.4 |
||
poppler poppler 0.5.9 |
||
poppler poppler 0.6.0 |
||
poppler poppler 0.6.1 |
||
poppler poppler 0.6.2 |
||
poppler poppler 0.6.3 |
||
poppler poppler 0.6.4 |
||
poppler poppler 0.7.0 |
||
poppler poppler 0.7.1 |
||
poppler poppler 0.7.2 |
||
poppler poppler 0.7.3 |
||
poppler poppler 0.8.0 |
||
poppler poppler 0.8.1 |
||
poppler poppler 0.8.2 |
||
poppler poppler 0.8.3 |
||
poppler poppler 0.8.4 |
||
poppler poppler 0.8.6 |
||
poppler poppler 0.8.7 |
||
poppler poppler 0.9.0 |
||
poppler poppler 0.9.1 |
||
poppler poppler 0.9.2 |
||
poppler poppler 0.9.3 |
||
poppler poppler 0.10.0 |
||
poppler poppler 0.10.1 |
||
poppler poppler 0.10.2 |
||
poppler poppler 0.10.3 |
||
poppler poppler 0.10.4 |
||
poppler poppler 0.10.5 |
||
poppler poppler 0.10.6 |
||
poppler poppler 0.10.7 |
||
poppler poppler 0.11.0 |
||
poppler poppler 0.11.1 |
||
poppler poppler 0.11.2 |
||
poppler poppler 0.11.3 |