10

CVE-2004-0888

Multiple integer overflows in xpdf 2.0 and 3.0, and other packages that use xpdf code such as CUPS, gpdf, and kdegraphics, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, a different set of vulnerabilities than those identified by CVE-2004-0889.

Data is provided by the National Vulnerability Database (NVD)
Easy Software ProductsCups Version1.0.4
Easy Software ProductsCups Version1.0.4_8
Easy Software ProductsCups Version1.1.1
Easy Software ProductsCups Version1.1.4
Easy Software ProductsCups Version1.1.4_2
Easy Software ProductsCups Version1.1.4_3
Easy Software ProductsCups Version1.1.4_5
Easy Software ProductsCups Version1.1.6
Easy Software ProductsCups Version1.1.7
Easy Software ProductsCups Version1.1.10
Easy Software ProductsCups Version1.1.12
Easy Software ProductsCups Version1.1.13
Easy Software ProductsCups Version1.1.14
Easy Software ProductsCups Version1.1.15
Easy Software ProductsCups Version1.1.16
Easy Software ProductsCups Version1.1.17
Easy Software ProductsCups Version1.1.18
Easy Software ProductsCups Version1.1.19
Easy Software ProductsCups Version1.1.19_rc5
Easy Software ProductsCups Version1.1.20
GnomeGpdf Version0.112
GnomeGpdf Version0.131
KdeKoffice Version1.3
KdeKoffice Version1.3.1
KdeKoffice Version1.3.2
KdeKoffice Version1.3.3
KdeKoffice Version1.3_beta1
KdeKoffice Version1.3_beta2
KdeKoffice Version1.3_beta3
KdeKpdf Version3.2
PdftohtmlPdftohtml Version0.32a
PdftohtmlPdftohtml Version0.32b
PdftohtmlPdftohtml Version0.33
PdftohtmlPdftohtml Version0.33a
PdftohtmlPdftohtml Version0.34
PdftohtmlPdftohtml Version0.35
PdftohtmlPdftohtml Version0.36
TetexTetex Version1.0.7
TetexTetex Version2.0
TetexTetex Version2.0.1
TetexTetex Version2.0.2
XpdfXpdf Version0.90
XpdfXpdf Version0.91
XpdfXpdf Version0.92
XpdfXpdf Version0.93
XpdfXpdf Version1.0
XpdfXpdf Version1.0a
XpdfXpdf Version1.1
XpdfXpdf Version2.0
XpdfXpdf Version2.1
XpdfXpdf Version2.3
XpdfXpdf Version3.0
DebianDebian Linux Version3.0
DebianDebian Linux Version3.0 Editionalpha
DebianDebian Linux Version3.0 Editionarm
DebianDebian Linux Version3.0 Editionhppa
DebianDebian Linux Version3.0 Editionia-32
DebianDebian Linux Version3.0 Editionia-64
DebianDebian Linux Version3.0 Editionm68k
DebianDebian Linux Version3.0 Editionmips
DebianDebian Linux Version3.0 Editionmipsel
DebianDebian Linux Version3.0 Editionppc
DebianDebian Linux Version3.0 Editions-390
DebianDebian Linux Version3.0 Editionsparc
KdeKde Version3.2
KdeKde Version3.2.1
KdeKde Version3.2.2
KdeKde Version3.2.3
KdeKde Version3.3
KdeKde Version3.3.1
RedhatEnterprise Linux Version2.1 Editionadvanced_server
RedhatEnterprise Linux Version2.1 Editionadvanced_server_ia64
RedhatEnterprise Linux Version2.1 Editionenterprise_server
RedhatEnterprise Linux Version2.1 Editionenterprise_server_ia64
RedhatEnterprise Linux Version2.1 Editionworkstation
RedhatEnterprise Linux Version2.1 Editionworkstation_ia64
RedhatEnterprise Linux Version3.0 Editionadvanced_server
RedhatEnterprise Linux Version3.0 Editionenterprise_server
RedhatEnterprise Linux Version3.0 Editionworkstation_server
RedhatFedora Core Versioncore_2.0
RedhatLinux Advanced Workstation Version2.1 Editionia64
RedhatLinux Advanced Workstation Version2.1 Editionitanium_processor
SuseSuse Linux Version8.0
SuseSuse Linux Version8.1
SuseSuse Linux Version8.2
SuseSuse Linux Version9.0
SuseSuse Linux Version9.0 Editionx86_64
SuseSuse Linux Version9.1
SuseSuse Linux Version9.2
UbuntuUbuntu Linux Version4.1 Editionia64
UbuntuUbuntu Linux Version4.1 Editionppc
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 4.44% 0.88
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 10 10 10
AV:N/AC:L/Au:N/C:C/I:C/A:C