Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-1182

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2009-1182
Last Modified 18 Jan 2012 12:00:00
Published 23 Apr 2009 01:30:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2009-1182

Summary

Multiple buffer overflows in the JBIG2 MMR decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allow remote attackers to execute arbitrary code via a crafted PDF file.

Vulnerable Systems

Application

  • Apple Cups 1.1

  • Apple Cups 1.1.1

  • Apple Cups 1.1.10

  • Apple Cups 1.1.10-1

  • Apple Cups 1.1.11

  • Apple Cups 1.1.12

  • Apple Cups 1.1.13

  • Apple Cups 1.1.14

  • Apple Cups 1.1.15

  • Apple Cups 1.1.16

  • Apple Cups 1.1.17

  • Apple Cups 1.1.18

  • Apple Cups 1.1.19

  • Apple Cups 1.1.2

  • Apple Cups 1.1.20

  • Apple Cups 1.1.21

  • Apple Cups 1.1.22

  • Apple Cups 1.1.23

  • Apple Cups 1.1.3

  • Apple Cups 1.1.4

  • Apple Cups 1.1.5

  • Apple Cups 1.1.5-1

  • Apple Cups 1.1.5-2

  • Apple Cups 1.1.6

  • Apple Cups 1.1.6-1

  • Apple Cups 1.1.6-2

  • Apple Cups 1.1.6-3

  • Apple Cups 1.1.7

  • Apple Cups 1.1.8

  • Apple Cups 1.1.9

  • Apple Cups 1.1.9-1

  • Apple Cups 1.2.0

  • Apple Cups 1.2.1

  • Apple Cups 1.2.10

  • Apple Cups 1.2.11

  • Apple Cups 1.2.12

  • Apple Cups 1.2.2

  • Apple Cups 1.2.3

  • Apple Cups 1.2.4

  • Apple Cups 1.2.5

  • Apple Cups 1.2.6

  • Apple Cups 1.2.7

  • Apple Cups 1.2.8

  • Apple Cups 1.2.9

  • Apple Cups 1.3.0

  • Apple Cups 1.3.1

  • Apple Cups 1.3.10

  • Apple Cups 1.3.11

  • Apple Cups 1.3.2

  • Apple Cups 1.3.3

  • Apple Cups 1.3.4

  • Apple Cups 1.3.5

  • Apple Cups 1.3.6

  • Apple Cups 1.3.7

  • Apple Cups 1.3.8

  • Apple Cups 1.3.9

  • Foolabs Xpdf 0.2

  • Foolabs Xpdf 0.3

  • Foolabs Xpdf 0.4

  • Foolabs Xpdf 0.5

  • Foolabs Xpdf 0.5a

  • Foolabs Xpdf 0.6

  • Foolabs Xpdf 0.7

  • Foolabs Xpdf 0.7a

  • Foolabs Xpdf 0.80

  • Foolabs Xpdf 0.90

  • Foolabs Xpdf 0.91

  • Foolabs Xpdf 0.91a

  • Foolabs Xpdf 0.91b

  • Foolabs Xpdf 0.91c

  • Foolabs Xpdf 0.92

  • Foolabs Xpdf 0.92a

  • Foolabs Xpdf 0.92b

  • Foolabs Xpdf 0.92c

  • Foolabs Xpdf 0.92d

  • Foolabs Xpdf 0.92e

  • Foolabs Xpdf 0.93

  • Foolabs Xpdf 0.93a

  • Foolabs Xpdf 0.93b

  • Foolabs Xpdf 0.93c

  • Foolabs Xpdf 1.00

  • Foolabs Xpdf 1.00a

  • Foolabs Xpdf 1.01

  • Foolabs Xpdf 2.00

  • Foolabs Xpdf 2.01

  • Foolabs Xpdf 2.02

  • Foolabs Xpdf 2.03

  • Foolabs Xpdf 3.00

  • Foolabs Xpdf 3.01

  • Foolabs Xpdf 3.02

  • Poppler 0.1

  • Poppler 0.1.1

  • Poppler 0.1.2

  • Poppler 0.10.0

  • Poppler 0.10.1

  • Poppler 0.10.2

  • Poppler 0.10.3

  • Poppler 0.10.4

  • Poppler 0.10.5

  • Poppler 0.2.0

  • Poppler 0.3.0

  • Poppler 0.3.1

  • Poppler 0.3.2

  • Poppler 0.3.3

  • Poppler 0.4.0

  • Poppler 0.4.1

  • Poppler 0.4.2

  • Poppler 0.4.3

  • Poppler 0.4.4

  • Poppler 0.5.0

  • Poppler 0.5.1

  • Poppler 0.5.2

  • Poppler 0.5.3

  • Poppler 0.5.4

  • Poppler 0.5.9

  • Poppler 0.5.90

  • Poppler 0.5.91

  • Poppler 0.6.0

  • Poppler 0.6.1

  • Poppler 0.6.2

  • Poppler 0.6.3

  • Poppler 0.6.4

  • Poppler 0.7.0

  • Poppler 0.7.1

  • Poppler 0.7.2

  • Poppler 0.7.3

  • Poppler 0.8.0

  • Poppler 0.8.1

  • Poppler 0.8.2

  • Poppler 0.8.3

  • Poppler 0.8.4

  • Poppler 0.8.5

  • Poppler 0.8.6

  • Poppler 0.8.7

  • Poppler 0.9.0

  • Poppler 0.9.1

  • Poppler 0.9.2

  • Poppler 0.9.3


References

CERT-VN - VU#196617

FEDORA - FEDORA-2009-6982

FEDORA - FEDORA-2009-6973

FEDORA - FEDORA-2009-6972

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=495896

VUPEN - ADV-2010-1040

VUPEN - ADV-2009-1077

VUPEN - ADV-2009-1076

VUPEN - ADV-2009-1066

VUPEN - ADV-2009-1065

SECTRACK - 1022073

BID - 34568

REDHAT - RHSA-2009:0480

REDHAT - RHSA-2009:0431

REDHAT - RHSA-2009:0430

REDHAT - RHSA-2009:0429

MANDRIVA - MDVSA-2010:087

MANDRIVA - MDVSA-2009:101

DEBIAN - DSA-1793

DEBIAN - DSA-1790

SLACKWARE - SSA:2009-129-01

SECUNIA - 35685

SECUNIA - 35618

SECUNIA - 35065

SECUNIA - 35064

SECUNIA - 35037

SECUNIA - 34991

SECUNIA - 34963

SECUNIA - 34959

SECUNIA - 34852

SECUNIA - 34756

SECUNIA - 34755

SECUNIA - 34746

SECUNIA - 34481

SECUNIA - 34291

REDHAT - RHSA-2009:0458

CONFIRM - http://poppler.freedesktop.org/releases.html

SUSE - SUSE-SR:2009:012

SUSE - SUSE-SR:2009:010

SUSE - SUSE-SA:2009:024

MANDRIVA - MDVSA-2011:175

Related Patches

Novell SUSE 2009:6283 kdegraphics3 security update for SLE 10 SP2 i586


Last Updated: 27 May 2016 10:58:04