Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5393

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2007-5393
Last Modified 17 Oct 2011 12:00:00
Published 07 Nov 2007 09:46:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2007-5393

Summary

Heap-based buffer overflow in the CCITTFaxStream::lookChar method in xpdf/Stream.cc in Xpdf 3.02p11 allows remote attackers to execute arbitrary code via a PDF file that contains a crafted CCITTFaxDecode filter.

Vulnerable Systems

Application

  • Xpdf 3.02p11


References

SECUNIA - 27260

FEDORA - FEDORA-2007-3100

FEDORA - FEDORA-2007-3059

FEDORA - FEDORA-2007-3031

CONFIRM - https://issues.rpath.com/browse/RPL-1926

VUPEN - ADV-2007-3786

VUPEN - ADV-2007-3779

VUPEN - ADV-2007-3776

VUPEN - ADV-2007-3775

VUPEN - ADV-2007-3774

UBUNTU - USN-542-2

UBUNTU - USN-542-1

SECTRACK - 1018905

BID - 26367

BUGTRAQ - 20071107 Secunia Research: Xpdf

REDHAT - RHSA-2007:1051

REDHAT - RHSA-2007:1031

REDHAT - RHSA-2007:1030

REDHAT - RHSA-2007:1029

REDHAT - RHSA-2007:1028

REDHAT - RHSA-2007:1027

REDHAT - RHSA-2007:1026

REDHAT - RHSA-2007:1025

REDHAT - RHSA-2007:1024

REDHAT - RHSA-2007:1023

REDHAT - RHSA-2007:1022

REDHAT - RHSA-2007:1021

SUSE - SUSE-SA:2007:060

MANDRIVA - MDKSA-2007:230

MANDRIVA - MDKSA-2007:228

MANDRIVA - MDKSA-2007:227

MANDRIVA - MDKSA-2007:223

MANDRIVA - MDKSA-2007:222

MANDRIVA - MDKSA-2007:221

MANDRIVA - MDKSA-2007:220

MANDRIVA - MDKSA-2007:219

CONFIRM - http://www.kde.org/info/security/advisory-20071107-1.txt

DEBIAN - DSA-1408

CONFIRM - http://support.novell.com/techcenter/psdb/f83e024a65d69ebc810d2117815b940d.html

CONFIRM - http://support.novell.com/techcenter/psdb/da3498f05433976cc548cc4eaf8349c8.html

CONFIRM - http://support.novell.com/techcenter/psdb/43ad7b3569dba59e7ba07677edc01cad.html

CONFIRM - http://support.novell.com/techcenter/psdb/3867a5092daac43cd6a92e6107d9fbce.html

CONFIRM - http://support.novell.com/techcenter/psdb/1d5fd29802b2ef7e342e733731f1e933.html

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2007-476.htm

SLACKWARE - SSA:2007-316-01

GENTOO - GLSA-200711-34

GENTOO - GLSA-200711-22

MISC - http://secunia.com/secunia_research/2007-88/advisory/

SECUNIA - 27579

SECUNIA - 27578

SECUNIA - 27577

SECUNIA - 27575

SECUNIA - 27574

SECUNIA - 27573

SECUNIA - 27553

FEDORA - FEDORA-2007-750

FEDORA - FEDORA-2007-3390

FEDORA - FEDORA-2007-4031

XF - xpdf-ccittfaxstreamlookchar-bo(38304)

DEBIAN - DSA-1537

DEBIAN - DSA-1509

DEBIAN - DSA-1480

GENTOO - GLSA-200805-13

SECUNIA - 30168

SECUNIA - 29604

SECUNIA - 29104

SECUNIA - 28812

SECUNIA - 28043

SECUNIA - 27856

SECUNIA - 27772

SECUNIA - 27743

SECUNIA - 27724

SECUNIA - 27721

SECUNIA - 27718

SECUNIA - 27705

SECUNIA - 27658

SECUNIA - 27656

SECUNIA - 27645

SECUNIA - 27642

SECUNIA - 27641

SECUNIA - 27640

SECUNIA - 27637

SECUNIA - 27636

SECUNIA - 27634

SECUNIA - 27632

SECUNIA - 27619

SECUNIA - 27618

SECUNIA - 27615

SECUNIA - 27599

SECUNIA - 26503

BUGTRAQ - 20071107 Secunia Research: Xpdf "Stream.cc" Multiple Vulnerabilities

Related Patches

Novell SUSE 2007:4644 xpdf security update for SLE 10 SP1 i586

Novell SUSE 2007:4682 kdegraphics3-pdf security update for SLE 10 SP1 i586


Last Updated: 27 May 2016 10:44:58