This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Summuary | |
|---|---|
| CPE Name | cpe:/a:foolabs:xpdf |
| Detail | |||
|---|---|---|---|
| Vendor | Foolabs | First view | 2009-04-09 |
| Product | Xpdf | Last view | 2011-03-31 |
| Version | Type | Application | |
| Edition | |||
| Language | |||
| Update | |||
Activity : Yearly
COMMON PLATFORM ENUMERATION : Repartition per Version
| CPE Name | Affected CVE |
|---|---|
| cpe:/a:foolabs:xpdf:3.02pl5 | 4 |
| cpe:/a:foolabs:xpdf:3.02pl4 | 6 |
| cpe:/a:foolabs:xpdf:3.02pl3 | 11 |
| cpe:/a:foolabs:xpdf:3.02pl2 | 11 |
| cpe:/a:foolabs:xpdf:3.02pl1 | 11 |
Related : CVE
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 4.3 | 2011-03-31 | CVE-2011-1554 | Network | Medium | None Requ... | |
| 4.3 | 2011-03-31 | CVE-2011-1553 | Network | Medium | None Requ... | |
| 4.3 | 2011-03-31 | CVE-2011-1552 | Network | Medium | None Requ... | |
| 6.8 | 2011-03-31 | CVE-2011-0764 | Network | Medium | None Requ... | |
| 6.8 | 2010-11-05 | CVE-2010-3704 | Network | Medium | None Requ... | |
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 6.8 | 2010-11-05 | CVE-2010-3702 | Network | Medium | None Requ... | |
| 4.3 | 2009-10-21 | CVE-2009-3609 | Network | Medium | None Requ... | |
| 9.3 | 2009-10-21 | CVE-2009-3608 | Network | Medium | None Requ... | |
| 9.3 | 2009-10-21 | CVE-2009-3606 | Network | Medium | None Requ... | |
| 9.3 | 2009-10-21 | CVE-2009-3604 | Network | Medium | None Requ... | |
| 9.3 | 2009-10-21 | CVE-2009-3603 | Network | Medium | None Requ... | |
| 4.3 | 2009-04-23 | CVE-2009-1183 | Network | Medium | None Requ... | |
| 7.5 | 2009-04-23 | CVE-2009-1182 | Network | Low | None Requ... | |
| 4.3 | 2009-04-23 | CVE-2009-1181 | Network | Medium | None Requ... | |
| 6.8 | 2009-04-23 | CVE-2009-1180 | Network | Medium | None Requ... | |
| 6.8 | 2009-04-23 | CVE-2009-1179 | Network | Medium | None Requ... | |
| 6.8 | 2009-04-23 | CVE-2009-0800 | Network | Medium | None Requ... | |
| 4.3 | 2009-04-23 | CVE-2009-0799 | Network | Medium | None Requ... | |
| 6.8 | 2009-04-23 | CVE-2009-0195 | Network | Medium | None Requ... | |
| 4.3 | 2009-04-23 | CVE-2009-0166 | Network | Medium | None Requ... | |
| 10 | 2009-04-23 | CVE-2009-0165 | Network | Low | None Requ... | |
| 4.3 | 2009-04-23 | CVE-2009-0147 | Network | Medium | None Requ... | |
| 4.3 | 2009-04-23 | CVE-2009-0146 | Network | Medium | None Requ... | |
| 6.9 | 2009-04-09 | CVE-2009-1144 | Local | Medium | None Requ... |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 33% (8) | CWE-189 | Numeric Errors |
| 25% (6) | CWE-399 | Resource Management Errors |
| 20% (5) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 16% (4) | CWE-20 | Improper Input Validation |
| 4% (1) | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
Oval Markup Language : Definitions
| OvalID | Name |
|---|---|
| oval:org.mitre.oval:def:9632 | Multiple buffer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, C... |
| oval:org.mitre.oval:def:9941 | Multiple integer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, ... |
| oval:org.mitre.oval:def:9778 | The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and ot... |
| oval:org.mitre.oval:def:10076 | Heap-based buffer overflow in Xpdf 3.02pl2 and earlier, CUPS 1.3.9, and proba... |
| oval:org.mitre.oval:def:10204 | The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Popple... |
| id | Name |
|---|---|
| oval:org.mitre.oval:def:11323 | Multiple "input validation flaws" in the JBIG2 decoder in Xpdf 3.02pl2 and ea... |
| oval:org.mitre.oval:def:11892 | Integer overflow in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9... |
| oval:org.mitre.oval:def:9926 | The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Popple... |
| oval:org.mitre.oval:def:9683 | The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Popple... |
| oval:org.mitre.oval:def:10735 | Multiple buffer overflows in the JBIG2 MMR decoder in Xpdf 3.02pl2 and earlie... |
| oval:org.mitre.oval:def:10769 | The JBIG2 MMR decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Po... |
| oval:org.mitre.oval:def:9671 | Integer overflow in the SplashBitmap::SplashBitmap function in Xpdf 3.x befor... |
| oval:org.mitre.oval:def:10969 | The Splash::drawImage function in Splash.cc in Xpdf 2.x and 3.x before 3.02pl... |
| oval:org.mitre.oval:def:7836 | Multiple Security Vulnerabilities in the Solaris GNOME PDF Rendering Librarie... |
| oval:org.mitre.oval:def:11289 | Integer overflow in the PSOutputDev::doImageL1Sep function in Xpdf before 3.0... |
| oval:org.mitre.oval:def:9536 | Integer overflow in the ObjectStream::ObjectStream function in XRef.cc in Xpd... |
| oval:org.mitre.oval:def:8134 | Multiple Security Vulnerabilities in the Solaris GNOME PDF Rendering Librarie... |
| oval:org.mitre.oval:def:11043 | Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpd... |
Open Source Vulnerability Database (OSVDB)
This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| id | Description |
|---|---|
| 74528 | t1lib PDF Type 1 Font Handling Invalid Memory Write Use-after-free DoS |
| 74527 | t1lib PDF Type 1 Font Handling Invalid Memory Location DoS |
| 74526 | t1lib PDF Type 1 Font Handling Off-by-one Overflow DoS |
| 72302 | t1lib PDF Type 1 Font Handling Invalid Pointer Code Execution |
| 69064 | Poppler Gfx::getPos PDF Handling Uninitialized Pointer Dereference DoS |
| id | Description |
|---|---|
| 69062 | Poppler fofi/FoFiType1.cc FoFiType1::parse Function Memory Corruption |
| 59184 | Poppler XRef.cc ObjectStream::ObjectStream Function PDF Handling Overflow |
| 59183 | Xpdf XRef.cc ObjectStream::ObjectStream Function PDF Handling Overflow |
| 59182 | Poppler PSOutputDev::doImageL1Sep Function PDF Handling Overflow |
| 59181 | Xpdf PSOutputDev::doImageL1Sep Function PDF Handling Overflow |
| 59180 | Poppler Stream.cc ImageStream::ImageStream Function PDF Handling Overflow |
| 59179 | Xpdf Stream.cc ImageStream::ImageStream Function PDF Handling Overflow |
| 59178 | Poppler SplashBitmap::SplashBitmap Function PDF Handling Overflow |
| 59177 | Xpdf SplashBitmap::SplashBitmap Function PDF Handling Overflow |
| 59176 | Poppler Splash.cc Splash::drawImage Function PDF Handling Arbitrary Code Exec... |
| 59175 | Xpdf Splash.cc Splash::drawImage Function PDF Handling Arbitrary Code Execution |
| 54497 | Xpdf on Apple Mac OS X JBIG2 Decoder Unspecified Overflow |
| 54496 | Xpdf JBIG2 Decoder PDF File Handling Multiple Function Overflows |
| 54495 | CUPS JBIG2 Decoder PDF File Handling Multiple Function Overflows |
| 54491 | Xpdf Crafted PDF File JBIG2 Symbol Dictionary Segments Handling Overflow |
| 54490 | CUPS Crafted PDF File JBIG2 Symbol Dictionary Segments Handling Overflow |
| 54489 | Xpdf JBIG2 Decoder PDF File Handling Unitialized Memory Free DoS |
| 54488 | CUPS JBIG2 Decoder PDF File Handling Unitialized Memory Free DoS |
| 54487 | Poppler JBIG2 Decoder PDF File Handling Out-of-bounds Read DoS |
| 54486 | Xpdf JBIG2 Decoder PDF File Handling Out-of-bounds Read DoS |
