Computer Security

XPDF / KOffice integer overflow
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



XPDF / KOffice integer overflow
updated since 03.08.2007
Published:03.08.2007
Source:BUGTRAQ
SecurityVulns ID:8002
Type:library
Level:6/10
Description:Integer overflow on PDF files parsing.
Affected:TETEX : tetex 2.0
 LIBEXTRACTOR : libextractor 0.4
 POPPLER : poppler 0.4
 KDE : koffice 1.6
 CUPS : cups 1.2
 GPDF : gpdf 2.8
 PDFKIT : pdfkit.framework 0.8
 KDE : kpdf 3.5
 KDE : kdegraphics 3.5
 KDE : kword 1.6
 IMAGEKITS : ImageKits 0.6
CVE:CVE-2007-3387 (Integer overflow in the StreamPredictor::StreamPredictor function in gpdf before 2.8.2, as used in (1) poppler, (2) xpdf, (3) kpdf, (4) kdegraphics, (5) CUPS, and other products, might allow remote attackers to execute arbitrary code via a crafted PDF file.)
Original documentdocumentUBUNTU, [USN-496-1] koffice vulnerability (03.08.2007)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru