Computer Security
[EN] securityvulns.ru no-pyccku


XPDF / KOffice integer overflow
updated since 03.08.2007
Published:03.08.2007
Source:
SecurityVulns ID:8002
Type:library
Threat Level:
6/10
Description:Integer overflow on PDF files parsing.
Affected:TETEX : tetex 2.0
 LIBEXTRACTOR : libextractor 0.4
 POPPLER : poppler 0.4
 KDE : koffice 1.6
 CUPS : cups 1.2
 GPDF : gpdf 2.8
 PDFKIT : pdfkit.framework 0.8
 KDE : kpdf 3.5
 KDE : kdegraphics 3.5
 KDE : kword 1.6
 IMAGEKITS : ImageKits 0.6
CVE:CVE-2007-3387 (Integer overflow in the StreamPredictor::StreamPredictor function in gpdf before 2.8.2, as used in (1) poppler, (2) xpdf, (3) kpdf, (4) kdegraphics, (5) CUPS, and other products, might allow remote attackers to execute arbitrary code via a crafted PDF file.)
Original documentdocumentUBUNTU, [USN-496-1] koffice vulnerability (03.08.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod