CVE-2008-2950
news
/
advisories
/
forum
/
software
/
advertising
/
search
/
exploits
[EN]
securityvulns.ru
no-pyccku
CVE
CVE-2008-2950
Status
Candidate
Description
The Page destructor in Page.cc in libpoppler in Poppler 0.8.4 and earlier deletes a pageWidgets object even if it is not initialized by a Page constructor, which allows remote attackers to execute arbitrary code via a crafted PDF document.
Phase
Assigned (30.06.2008)
NVD:
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-2950
References
BID :
30107
BUGTRAQ :
20080707 [oCERT-2008-007] libpoppler uninitialized pointer
BUGTRAQ :
20080709 rPSA-2008-0223-1 poppler
CONFIRM :
http://wiki.rpath.com/Advisories:rPSA-2008-0223
FEDORA :
FEDORA-2008-7104
GENTOO :
GLSA-200807-04
MANDRIVA :
MDVSA-2008:146
MILW0RM :
6032
MISC :
http://www.ocert.org/advisories/ocert-2008-007.html
SECTRACK :
1020435
SECUNIA :
30963
SECUNIA :
31002
SECUNIA :
31267
SECUNIA :
31405
SREASON :
3977
SUSE :
SUSE-SR:2008:015
UBUNTU :
USN-631-1
VUPEN :
ADV-2008-2024
XF :
poppler-page-destructor-code-execution(43619)
SecurityVulns:
libpoppler library uninitialized pointer
poppler library DoS
About
|
Terms of use
|
Privacy Policy
©
SecurityVulns
,
3APA3A
, Vladimir Dubrovin
Nizhny Novgorod
Enter your search terms
Web
securityvulns.com
Submit search form
test server
