This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:poppler:poppler
Detail
VendorPopplerFirst view 2005-12-31
ProductPopplerLast view 2010-11-05
VersionTypeApplication
Edition 
Language 
Update 

Activity : Overall

COMMON PLATFORM ENUMERATION : Repartition per Version

CPE NameAffected CVE
cpe:/a:poppler:poppler:0.9.320
cpe:/a:poppler:poppler:0.9.220
cpe:/a:poppler:poppler:0.9.120
cpe:/a:poppler:poppler:0.9.020
cpe:/a:poppler:poppler:0.8.720
Hide | Show 67 More...
CPE NameAffected CVE
cpe:/a:poppler:poppler:0.8.617
cpe:/a:poppler:poppler:0.8.513
cpe:/a:poppler:poppler:0.8.420
cpe:/a:poppler:poppler:0.8.317
cpe:/a:poppler:poppler:0.8.217
cpe:/a:poppler:poppler:0.8.117
cpe:/a:poppler:poppler:0.8.017
cpe:/a:poppler:poppler:0.7.320
cpe:/a:poppler:poppler:0.7.220
cpe:/a:poppler:poppler:0.7.120
cpe:/a:poppler:poppler:0.7.020
cpe:/a:poppler:poppler:0.6.420
cpe:/a:poppler:poppler:0.6.320
cpe:/a:poppler:poppler:0.6.220
cpe:/a:poppler:poppler:0.6.120
cpe:/a:poppler:poppler:0.6.020
cpe:/a:poppler:poppler:0.5.9117
cpe:/a:poppler:poppler:0.5.9015
cpe:/a:poppler:poppler:0.5.920
cpe:/a:poppler:poppler:0.5.420
cpe:/a:poppler:poppler:0.5.320
cpe:/a:poppler:poppler:0.5.220
cpe:/a:poppler:poppler:0.5.120
cpe:/a:poppler:poppler:0.5.020
cpe:/a:poppler:poppler:0.4.420
cpe:/a:poppler:poppler:0.4.320
cpe:/a:poppler:poppler:0.4.223
cpe:/a:poppler:poppler:0.4.120
cpe:/a:poppler:poppler:0.4.020
cpe:/a:poppler:poppler:0.3.320
cpe:/a:poppler:poppler:0.3.220
cpe:/a:poppler:poppler:0.3.120
cpe:/a:poppler:poppler:0.3.020
cpe:/a:poppler:poppler:0.2.020
cpe:/a:poppler:poppler:0.15.13
cpe:/a:poppler:poppler:0.15.03
cpe:/a:poppler:poppler:0.14.53
cpe:/a:poppler:poppler:0.14.43
cpe:/a:poppler:poppler:0.14.33
cpe:/a:poppler:poppler:0.14.23
cpe:/a:poppler:poppler:0.14.13
cpe:/a:poppler:poppler:0.14.03
cpe:/a:poppler:poppler:0.13.43
cpe:/a:poppler:poppler:0.13.33
cpe:/a:poppler:poppler:0.13.23
cpe:/a:poppler:poppler:0.13.13
cpe:/a:poppler:poppler:0.13.03
cpe:/a:poppler:poppler:0.12.43
cpe:/a:poppler:poppler:0.12.33
cpe:/a:poppler:poppler:0.12.23
cpe:/a:poppler:poppler:0.12.13
cpe:/a:poppler:poppler:0.12.010
cpe:/a:poppler:poppler:0.11.39
cpe:/a:poppler:poppler:0.11.29
cpe:/a:poppler:poppler:0.11.19
cpe:/a:poppler:poppler:0.11.09
cpe:/a:poppler:poppler:0.10.79
cpe:/a:poppler:poppler:0.10.610
cpe:/a:poppler:poppler:0.10.520
cpe:/a:poppler:poppler:0.10.420
cpe:/a:poppler:poppler:0.10.322
cpe:/a:poppler:poppler:0.10.222
cpe:/a:poppler:poppler:0.10.122
cpe:/a:poppler:poppler:0.10.020
cpe:/a:poppler:poppler:0.1.220
cpe:/a:poppler:poppler:0.1.120
cpe:/a:poppler:poppler:0.120

Related : CVE

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
6.82010-11-05CVE-2010-3704NetworkMediumNone Requ...
4.32010-11-05CVE-2010-3703NetworkMediumNone Requ...
6.82010-11-05CVE-2010-3702NetworkMediumNone Requ...
6.82009-11-13CVE-2009-3938NetworkMediumNone Requ...
6.82009-11-02CVE-2009-3605NetworkMediumNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
4.32009-10-21CVE-2009-3609NetworkMediumNone Requ...
9.32009-10-21CVE-2009-3608NetworkMediumNone Requ...
9.32009-10-21CVE-2009-3607NetworkMediumNone Requ...
9.32009-10-21CVE-2009-3606NetworkMediumNone Requ...
9.32009-10-21CVE-2009-3604NetworkMediumNone Requ...
9.32009-10-21CVE-2009-3603NetworkMediumNone Requ...
52009-04-23CVE-2009-1188NetworkLowNone Requ...
52009-04-23CVE-2009-1187NetworkLowNone Requ...
4.32009-04-23CVE-2009-1183NetworkMediumNone Requ...
7.52009-04-23CVE-2009-1182NetworkLowNone Requ...
4.32009-04-23CVE-2009-1181NetworkMediumNone Requ...
6.82009-04-23CVE-2009-1180NetworkMediumNone Requ...
6.82009-04-23CVE-2009-1179NetworkMediumNone Requ...
6.82009-04-23CVE-2009-0800NetworkMediumNone Requ...
4.32009-04-23CVE-2009-0799NetworkMediumNone Requ...
4.32009-04-23CVE-2009-0166NetworkMediumNone Requ...
52009-03-03CVE-2009-0756NetworkLowNone Requ...
52009-03-03CVE-2009-0755NetworkLowNone Requ...
7.52008-07-07CVE-2008-2950NetworkLowNone Requ...

CWE : Common Weakness Enumeration

%idName
40% (11)CWE-189Numeric Errors
25% (7)CWE-399Resource Management Errors
18% (5)CWE-20Improper Input Validation
11% (3)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
3% (1)CWE-94Failure to Control Generation of Code ('Code Injection')

Oval Markup Language : Definitions

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:9437The CCITTFaxStream::CCITTFaxStream function in Stream.cc for xpdf, gpdf, kpdf...
oval:org.mitre.oval:def:9575Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS...
oval:org.mitre.oval:def:9992Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS...
oval:org.mitre.oval:def:11149Integer overflow in the StreamPredictor::StreamPredictor function in xpdf 3.0...
oval:org.mitre.oval:def:22418ELSA-2007:0720: cups security update (Important)
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:22321ELSA-2007:0732: poppler security update (Important)
oval:org.mitre.oval:def:21863ELSA-2007:0729: kdegraphics security update (Important)
oval:org.mitre.oval:def:21839ELSA-2007:0731: tetex security update (Important)
oval:org.mitre.oval:def:11226The CairoFont::create function in CairoFontEngine.cc in Poppler, possibly bef...
oval:org.mitre.oval:def:21829ELSA-2008:0239: poppler security update (Important)
oval:org.mitre.oval:def:9778The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and ot...
oval:org.mitre.oval:def:10204The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Popple...
oval:org.mitre.oval:def:11323Multiple "input validation flaws" in the JBIG2 decoder in Xpdf 3.02pl2 and ea...
oval:org.mitre.oval:def:11892Integer overflow in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9...
oval:org.mitre.oval:def:9926The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Popple...
oval:org.mitre.oval:def:9683The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Popple...
oval:org.mitre.oval:def:10735Multiple buffer overflows in the JBIG2 MMR decoder in Xpdf 3.02pl2 and earlie...
oval:org.mitre.oval:def:10769The JBIG2 MMR decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Po...
oval:org.mitre.oval:def:22616ELSA-2009:0431: kdegraphics security update (Important)
oval:org.mitre.oval:def:21858ELSA-2009:0429: cups security update (Important)
oval:org.mitre.oval:def:10292Integer overflow in the JBIG2 decoding feature in Poppler before 0.10.6 allow...
oval:org.mitre.oval:def:9957Integer overflow in the JBIG2 decoding feature in the SplashBitmap::SplashBit...
oval:org.mitre.oval:def:9671Integer overflow in the SplashBitmap::SplashBitmap function in Xpdf 3.x befor...
oval:org.mitre.oval:def:10969The Splash::drawImage function in Splash.cc in Xpdf 2.x and 3.x before 3.02pl...
oval:org.mitre.oval:def:7731Multiple Security Vulnerabilities in the Solaris GNOME PDF Rendering Librarie...

Open Source Vulnerability Database (OSVDB)

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
69064Poppler Gfx::getPos PDF Handling Uninitialized Pointer Dereference DoS
69063Poppler poppler/Function.cc PostScriptFunction::PostScriptFunction Uninitiali...
69062Poppler fofi/FoFiType1.cc FoFiType1::parse Function Memory Corruption
59936Poppler pdftoabw Utility poppler/ABWOutputDev.cc ABWOutputDev::endWord Functi...
59825Poppler PDF Handling Multiple Unspecified Overflows
Hide | Show 20 More...
idDescription
59184Poppler XRef.cc ObjectStream::ObjectStream Function PDF Handling Overflow
59183Xpdf XRef.cc ObjectStream::ObjectStream Function PDF Handling Overflow
59182Poppler PSOutputDev::doImageL1Sep Function PDF Handling Overflow
59181Xpdf PSOutputDev::doImageL1Sep Function PDF Handling Overflow
59180Poppler Stream.cc ImageStream::ImageStream Function PDF Handling Overflow
59179Xpdf Stream.cc ImageStream::ImageStream Function PDF Handling Overflow
59178Poppler SplashBitmap::SplashBitmap Function PDF Handling Overflow
59177Xpdf SplashBitmap::SplashBitmap Function PDF Handling Overflow
59176Poppler Splash.cc Splash::drawImage Function PDF Handling Arbitrary Code Exec...
59175Xpdf Splash.cc Splash::drawImage Function PDF Handling Arbitrary Code Execution
59143Poppler glib/poppler-page.cc create_surface_from_thumbnail_data Function Over...
54808Poppler JBIG2 Decoder SplashBitmap Handling Overflow
54807Poppler JBIG2 Decoder CairoOutputDev Handling Overflow
54489Xpdf JBIG2 Decoder PDF File Handling Unitialized Memory Free DoS
54488CUPS JBIG2 Decoder PDF File Handling Unitialized Memory Free DoS
54487Poppler JBIG2 Decoder PDF File Handling Out-of-bounds Read DoS
54486Xpdf JBIG2 Decoder PDF File Handling Out-of-bounds Read DoS
54485CUPS JBIG2 Decoder PDF File Handling Out-of-bounds Read DoS
54484Poppler JBIG2 Decoder PDF File Handling NULL Dereference DoS
54483Xpdf JBIG2 Decoder PDF File Handling NULL Dereference DoS

Milw0rm Exploits

idDescription
2008-07-08Poppler <= 0.8.4 libpoppler uninitialized pointer Code Execution PoC

OpenVAS Exploits

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2012-08-24Name : RedHat Update for tetex RHSA-2012:1201-01
File : nvt/gb_RHSA-2012_1201-01_tetex.nasl
2012-08-24Name : CentOS Update for tetex CESA-2012:1201 centos5
File : nvt/gb_CESA-2012_1201_tetex_centos5.nasl
2011-11-18Name : Mandriva Update for poppler MDVSA-2011:175 (poppler)
File : nvt/gb_mandriva_MDVSA_2011_175.nasl
2011-08-09Name : CentOS Update for cups CESA-2009:0429 centos4 i386
File : nvt/gb_CESA-2009_0429_cups_centos4_i386.nasl
2011-08-09Name : CentOS Update for cups CESA-2009:0429 centos5 i386
File : nvt/gb_CESA-2009_0429_cups_centos5_i386.nasl
Hide | Show 20 More...
idDescription
2011-08-09Name : CentOS Update for xpdf CESA-2009:0430 centos3 i386
File : nvt/gb_CESA-2009_0430_xpdf_centos3_i386.nasl
2011-08-09Name : CentOS Update for xpdf CESA-2009:0430 centos4 i386
File : nvt/gb_CESA-2009_0430_xpdf_centos4_i386.nasl
2011-08-09Name : CentOS Update for kdegraphics CESA-2009:0431 centos4 i386
File : nvt/gb_CESA-2009_0431_kdegraphics_centos4_i386.nasl
2011-08-09Name : CentOS Update for kdegraphics CESA-2009:0431 centos5 i386
File : nvt/gb_CESA-2009_0431_kdegraphics_centos5_i386.nasl
2011-08-09Name : CentOS Update for gpdf CESA-2009:0458 centos4 i386
File : nvt/gb_CESA-2009_0458_gpdf_centos4_i386.nasl
2011-08-09Name : CentOS Update for tetex CESA-2010:0400 centos5 i386
File : nvt/gb_CESA-2010_0400_tetex_centos5_i386.nasl
2011-08-09Name : CentOS Update for poppler CESA-2009:0480 centos5 i386
File : nvt/gb_CESA-2009_0480_poppler_centos5_i386.nasl
2011-08-09Name : CentOS Update for poppler CESA-2010:0749 centos5 i386
File : nvt/gb_CESA-2010_0749_poppler_centos5_i386.nasl
2011-08-09Name : CentOS Update for kdegraphics CESA-2010:0753 centos5 i386
File : nvt/gb_CESA-2010_0753_kdegraphics_centos5_i386.nasl
2011-08-09Name : CentOS Update for xpdf CESA-2009:1500 centos3 i386
File : nvt/gb_CESA-2009_1500_xpdf_centos3_i386.nasl
2011-08-09Name : CentOS Update for xpdf CESA-2009:1501 centos4 i386
File : nvt/gb_CESA-2009_1501_xpdf_centos4_i386.nasl
2011-08-09Name : CentOS Update for kdegraphics CESA-2009:1502 centos5 i386
File : nvt/gb_CESA-2009_1502_kdegraphics_centos5_i386.nasl
2011-08-09Name : CentOS Update for gpdf CESA-2009:1503 centos4 i386
File : nvt/gb_CESA-2009_1503_gpdf_centos4_i386.nasl
2011-08-09Name : CentOS Update for poppler CESA-2009:1504 centos5 i386
File : nvt/gb_CESA-2009_1504_poppler_centos5_i386.nasl
2011-08-09Name : CentOS Update for kdegraphics CESA-2009:1512 centos4 i386
File : nvt/gb_CESA-2009_1512_kdegraphics_centos4_i386.nasl
2011-08-09Name : CentOS Update for cups CESA-2009:1513 centos5 i386
File : nvt/gb_CESA-2009_1513_cups_centos5_i386.nasl
2011-03-07Name : Debian Security Advisory DSA 2135-1 (xpdf)
File : nvt/deb_2135_1.nasl
2010-12-02Name : Fedora Update for poppler FEDORA-2010-15857
File : nvt/gb_fedora_2010_15857_poppler_fc14.nasl
2010-12-02Name : Fedora Update for xpdf FEDORA-2010-16744
File : nvt/gb_fedora_2010_16744_xpdf_fc14.nasl
2010-11-17Name : Debian Security Advisory DSA 2116-1 (poppler)
File : nvt/deb_2116_1.nasl

Snort® IPS/IDS

DateDescription
2014-01-10xpdf ObjectStream integer overflow
RuleID : 24266 - Type : FILE-PDF - Revision : 3
2014-01-10Xpdf Splash DrawImage integer overflow attempt
RuleID : 16355 - Type : FILE-PDF - Revision : 9
2014-01-10XPDF ObjectStream integer overflow
RuleID : 16335 - Type : FILE-PDF - Revision : 8

Nessus® Vulnerability Scanner

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2014-02-18Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201402-17.nasl - Type : ACT_GATHER_INFO
2013-10-07Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201310-03.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2010-0399.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2010-0400.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2010-0401.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2007-0720.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2007-0729.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing a security update.
File : oraclelinux_ELSA-2007-0730.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2007-0731.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2007-0732.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing a security update.
File : oraclelinux_ELSA-2007-0735.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2012-1201.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2009-0429.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing a security update.
File : oraclelinux_ELSA-2009-0430.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2009-0431.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing a security update.
File : oraclelinux_ELSA-2009-0458.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2010-0749.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing a security update.
File : oraclelinux_ELSA-2010-0750.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing a security update.
File : oraclelinux_ELSA-2010-0751.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing a security update.
File : oraclelinux_ELSA-2010-0752.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2009-0480.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2010-0753.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2010-0754.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2010-0755.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2010-0859.nasl - Type : ACT_GATHER_INFO