Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0799

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2009-0799
Last Modified 18 Jan 2012 12:00:00
Published 23 Apr 2009 01:30:01
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2009-0799

Summary

The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to cause a denial of service (crash) via a crafted PDF file that triggers an out-of-bounds read.

Vulnerable Systems

Application

  • Apple Cups 1.1

  • Apple Cups 1.1.1

  • Apple Cups 1.1.10

  • Apple Cups 1.1.10-1

  • Apple Cups 1.1.11

  • Apple Cups 1.1.12

  • Apple Cups 1.1.13

  • Apple Cups 1.1.14

  • Apple Cups 1.1.15

  • Apple Cups 1.1.16

  • Apple Cups 1.1.17

  • Apple Cups 1.1.18

  • Apple Cups 1.1.19

  • Apple Cups 1.1.2

  • Apple Cups 1.1.20

  • Apple Cups 1.1.21

  • Apple Cups 1.1.22

  • Apple Cups 1.1.23

  • Apple Cups 1.1.3

  • Apple Cups 1.1.4

  • Apple Cups 1.1.5

  • Apple Cups 1.1.5-1

  • Apple Cups 1.1.5-2

  • Apple Cups 1.1.6

  • Apple Cups 1.1.6-1

  • Apple Cups 1.1.6-2

  • Apple Cups 1.1.6-3

  • Apple Cups 1.1.7

  • Apple Cups 1.1.8

  • Apple Cups 1.1.9

  • Apple Cups 1.1.9-1

  • Apple Cups 1.2.0

  • Apple Cups 1.2.1

  • Apple Cups 1.2.10

  • Apple Cups 1.2.11

  • Apple Cups 1.2.12

  • Apple Cups 1.2.2

  • Apple Cups 1.2.3

  • Apple Cups 1.2.4

  • Apple Cups 1.2.5

  • Apple Cups 1.2.6

  • Apple Cups 1.2.7

  • Apple Cups 1.2.8

  • Apple Cups 1.2.9

  • Apple Cups 1.3.0

  • Apple Cups 1.3.1

  • Apple Cups 1.3.10

  • Apple Cups 1.3.11

  • Apple Cups 1.3.2

  • Apple Cups 1.3.3

  • Apple Cups 1.3.4

  • Apple Cups 1.3.5

  • Apple Cups 1.3.6

  • Apple Cups 1.3.7

  • Apple Cups 1.3.8

  • Apple Cups 1.3.9

  • Foolabs Xpdf 0.2

  • Foolabs Xpdf 0.3

  • Foolabs Xpdf 0.4

  • Foolabs Xpdf 0.5

  • Foolabs Xpdf 0.5a

  • Foolabs Xpdf 0.6

  • Foolabs Xpdf 0.7

  • Foolabs Xpdf 0.7a

  • Foolabs Xpdf 0.80

  • Foolabs Xpdf 0.90

  • Foolabs Xpdf 0.91

  • Foolabs Xpdf 0.91a

  • Foolabs Xpdf 0.91b

  • Foolabs Xpdf 0.91c

  • Foolabs Xpdf 0.92

  • Foolabs Xpdf 0.92a

  • Foolabs Xpdf 0.92b

  • Foolabs Xpdf 0.92c

  • Foolabs Xpdf 0.92d

  • Foolabs Xpdf 0.92e

  • Foolabs Xpdf 0.93

  • Foolabs Xpdf 0.93a

  • Foolabs Xpdf 0.93b

  • Foolabs Xpdf 0.93c

  • Foolabs Xpdf 1.00

  • Foolabs Xpdf 1.00a

  • Foolabs Xpdf 1.01

  • Foolabs Xpdf 2.00

  • Foolabs Xpdf 2.01

  • Foolabs Xpdf 2.02

  • Foolabs Xpdf 2.03

  • Foolabs Xpdf 3.00

  • Foolabs Xpdf 3.01

  • Foolabs Xpdf 3.02

  • Poppler 0.1

  • Poppler 0.1.1

  • Poppler 0.1.2

  • Poppler 0.10.0

  • Poppler 0.10.1

  • Poppler 0.10.2

  • Poppler 0.10.3

  • Poppler 0.10.4

  • Poppler 0.10.5

  • Poppler 0.2.0

  • Poppler 0.3.0

  • Poppler 0.3.1

  • Poppler 0.3.2

  • Poppler 0.3.3

  • Poppler 0.4.0

  • Poppler 0.4.1

  • Poppler 0.4.2

  • Poppler 0.4.3

  • Poppler 0.4.4

  • Poppler 0.5.0

  • Poppler 0.5.1

  • Poppler 0.5.2

  • Poppler 0.5.3

  • Poppler 0.5.4

  • Poppler 0.5.9

  • Poppler 0.5.90

  • Poppler 0.5.91

  • Poppler 0.6.0

  • Poppler 0.6.1

  • Poppler 0.6.2

  • Poppler 0.6.3

  • Poppler 0.6.4

  • Poppler 0.7.0

  • Poppler 0.7.1

  • Poppler 0.7.2

  • Poppler 0.7.3

  • Poppler 0.8.0

  • Poppler 0.8.1

  • Poppler 0.8.2

  • Poppler 0.8.3

  • Poppler 0.8.4

  • Poppler 0.8.5

  • Poppler 0.8.6

  • Poppler 0.8.7

  • Poppler 0.9.0

  • Poppler 0.9.1

  • Poppler 0.9.2

  • Poppler 0.9.3


References

CERT-VN - VU#196617

VUPEN - ADV-2009-1076

VUPEN - ADV-2009-1066

VUPEN - ADV-2009-1065

BID - 34568

REDHAT - RHSA-2009:0480

REDHAT - RHSA-2009:0431

REDHAT - RHSA-2009:0430

REDHAT - RHSA-2009:0429

DEBIAN - DSA-1793

DEBIAN - DSA-1790

CONFIRM - http://poppler.freedesktop.org/releases.html

FEDORA - FEDORA-2009-6982

FEDORA - FEDORA-2009-6973

FEDORA - FEDORA-2009-6972

VUPEN - ADV-2010-1040

VUPEN - ADV-2009-1077

SECTRACK - 1022072

MANDRIVA - MDVSA-2010:087

MANDRIVA - MDVSA-2009:101

SLACKWARE - SSA:2009-129-01

SECUNIA - 35685

SECUNIA - 35618

SECUNIA - 35065

SECUNIA - 35064

SECUNIA - 35037

SECUNIA - 34991

SECUNIA - 34963

SECUNIA - 34959

SECUNIA - 34852

SECUNIA - 34756

SECUNIA - 34755

SECUNIA - 34746

SECUNIA - 34481

SECUNIA - 34291

REDHAT - RHSA-2009:0458

SUSE - SUSE-SR:2009:012

SUSE - SUSE-SR:2009:010

SUSE - SUSE-SA:2009:024

CONFIRM - http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=495886

MANDRIVA - MDVSA-2011:175

Related Patches

Novell SUSE 2009:6283 kdegraphics3 security update for SLE 10 SP2 i586


Last Updated: 27 May 2016 10:58:04