CVE-2009-0791
xpdf: multiple integer overflows
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Multiple integer overflows in Xpdf 2.x and 3.x and Poppler 0.x, as used in the pdftops filter in CUPS 1.1.17, 1.1.22, and 1.3.7, GPdf, and kdegraphics KPDF, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF file that triggers a heap-based buffer overflow, possibly related to (1) Decrypt.cxx, (2) FoFiTrueType.cxx, (3) gmem.c, (4) JBIG2Stream.cxx, and (5) PSOutputDev.cxx in pdftops/. NOTE: the JBIG2Stream.cxx vector may overlap CVE-2009-1179.
Múltiples desbordamientos de entero en el filtro pdftops en CUPS v1.1.17, v1.1.22 y v1.3.7 permite a atacantes remotos provocar una denegación de servicio (caída de la aplicación) o posiblemente ejecutar código de su elección mediante un fichero PDF manipulado que dispara una desbordamiento de búfer basado en memoria dinámica (heap), posiblemente relacionado con (1) Decrypt.cxx, (2) FoFiTrueType.cxx, (3) gmem.c, (4) JBIG2Stream.cxx y (5) PSOutputDev.cxx en pdftops/. NOTA: el vector JBIG2Stream.cxx podría solapar CVE-2009-1179.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2009-03-04 CVE Reserved
- 2009-06-09 CVE Published
- 2024-05-16 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-189: Numeric Errors
- CWE-190: Integer Overflow or Wraparound
CAPEC
References (24)
| URL | Tag | Source |
|---|---|---|
| http://secunia.com/advisories/35685 | Third Party Advisory | |
| http://secunia.com/advisories/37023 | Third Party Advisory | |
| http://secunia.com/advisories/37028 | Third Party Advisory | |
| http://secunia.com/advisories/37037 | Third Party Advisory | |
| http://secunia.com/advisories/37043 | Third Party Advisory | |
| http://secunia.com/advisories/37077 | Third Party Advisory | |
| http://secunia.com/advisories/37079 | Third Party Advisory | |
| http://securitytracker.com/id?1022326 | Vdb Entry | |
| http://www.securityfocus.com/bid/35195 | Vdb Entry | |
| http://www.vupen.com/english/advisories/2009/2928 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/50941 | Vdb Entry | |
| https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10534 | Signature |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://bugzilla.redhat.com/show_bug.cgi?id=491840 | 2010-05-06 |
| URL | Date | SRC |
|---|---|---|
| http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html | 2023-02-13 | |
| http://secunia.com/advisories/35340 | 2023-02-13 | |
| http://www.mandriva.com/security/advisories?name=MDVSA-2009:334 | 2023-02-13 | |
| http://www.redhat.com/support/errata/RHSA-2009-1083.html | 2023-02-13 | |
| http://www.vupen.com/english/advisories/2009/1488 | 2023-02-13 | |
| https://rhn.redhat.com/errata/RHSA-2009-1500.html | 2023-02-13 | |
| https://rhn.redhat.com/errata/RHSA-2009-1501.html | 2023-02-13 | |
| https://rhn.redhat.com/errata/RHSA-2009-1502.html | 2023-02-13 | |
| https://rhn.redhat.com/errata/RHSA-2009-1503.html | 2023-02-13 | |
| https://rhn.redhat.com/errata/RHSA-2009-1512.html | 2023-02-13 | |
| https://access.redhat.com/security/cve/CVE-2009-0791 | 2010-05-06 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Apple Search vendor "Apple" | Cups Search vendor "Apple" for product "Cups" | 1.1.17 Search vendor "Apple" for product "Cups" and version "1.1.17" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Cups Search vendor "Apple" for product "Cups" | 1.1.22 Search vendor "Apple" for product "Cups" and version "1.1.22" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Cups Search vendor "Apple" for product "Cups" | 1.3.7 Search vendor "Apple" for product "Cups" and version "1.3.7" | - |
Affected
| ||||||