10

CVE-2005-3625

Exploit

EPSS 11.29%
Published 31.12.2005 05:00:00
Last modified 03.04.2025 01:03:51
Source secalert@redhat.com
Teams watchlist Login
Open Login

Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (infinite loop) via streams that end prematurely, as demonstrated using the (1) CCITTFaxDecode and (2) DCTDecode streams, aka "Infinite CPU spins."

Affected products Warnungen 0 Metrics 2 CWE 0 References 88

Data is provided by the National Vulnerability Database (NVD)

Easy Software Products ≫ Cups Version1.1.22

Easy Software Products ≫ Cups Version1.1.22_rc1

Easy Software Products ≫ Cups Version1.1.23

Easy Software Products ≫ Cups Version1.1.23_rc1

Kde ≫ Kdegraphics Version3.2

Kde ≫ Kdegraphics Version3.4.3

Kde ≫ Koffice Version1.4

Kde ≫ Koffice Version1.4.1

Kde ≫ Koffice Version1.4.2

Kde ≫ Kpdf Version3.2

Kde ≫ Kpdf Version3.4.3

Kde ≫ Kword Version1.4.2

Libextractor ≫ Libextractor

Poppler ≫ Poppler Version0.4.2

Sgi ≫ Propack Version3.0 Updatesp6

Tetex ≫ Tetex Version1.0.7

Tetex ≫ Tetex Version2.0

Tetex ≫ Tetex Version2.0.1

Tetex ≫ Tetex Version2.0.2

Tetex ≫ Tetex Version3.0

Xpdf ≫ Xpdf Version3.0

Conectiva ≫ Linux Version10.0

Debian ≫ Debian Linux Version3.0

Debian ≫ Debian Linux Version3.0 Editionalpha

Debian ≫ Debian Linux Version3.0 Editionarm

Debian ≫ Debian Linux Version3.0 Editionhppa

Debian ≫ Debian Linux Version3.0 Editionia-32

Debian ≫ Debian Linux Version3.0 Editionia-64

Debian ≫ Debian Linux Version3.0 Editionm68k

Debian ≫ Debian Linux Version3.0 Editionmips

Debian ≫ Debian Linux Version3.0 Editionmipsel

Debian ≫ Debian Linux Version3.0 Editionppc

Debian ≫ Debian Linux Version3.0 Editions-390

Debian ≫ Debian Linux Version3.0 Editionsparc

Debian ≫ Debian Linux Version3.1

Debian ≫ Debian Linux Version3.1 Editionalpha

Debian ≫ Debian Linux Version3.1 Editionamd64

Debian ≫ Debian Linux Version3.1 Editionarm

Debian ≫ Debian Linux Version3.1 Editionhppa

Debian ≫ Debian Linux Version3.1 Editionia-32

Debian ≫ Debian Linux Version3.1 Editionia-64

Debian ≫ Debian Linux Version3.1 Editionm68k

Debian ≫ Debian Linux Version3.1 Editionmips

Debian ≫ Debian Linux Version3.1 Editionmipsel

Debian ≫ Debian Linux Version3.1 Editionppc

Debian ≫ Debian Linux Version3.1 Editions-390

Debian ≫ Debian Linux Version3.1 Editionsparc

Gentoo ≫ Linux

Mandrakesoft ≫ Mandrake Linux Version10.1

Mandrakesoft ≫ Mandrake Linux Version10.1 Editionx86-64

Mandrakesoft ≫ Mandrake Linux Version10.2

Mandrakesoft ≫ Mandrake Linux Version10.2 Editionx86-64

Mandrakesoft ≫ Mandrake Linux Version2006

Mandrakesoft ≫ Mandrake Linux Version2006 Editionx86-64

Mandrakesoft ≫ Mandrake Linux Corporate Server Version2.1

Mandrakesoft ≫ Mandrake Linux Corporate Server Version2.1 Editionx86_64

Mandrakesoft ≫ Mandrake Linux Corporate Server Version3.0

Mandrakesoft ≫ Mandrake Linux Corporate Server Version3.0 Editionx86_64

Redhat ≫ Enterprise Linux Version2.1 Editionadvanced_server

Redhat ≫ Enterprise Linux Version2.1 Editionadvanced_server_ia64

Redhat ≫ Enterprise Linux Version2.1 Editionenterprise_server

Redhat ≫ Enterprise Linux Version2.1 Editionenterprise_server_ia64

Redhat ≫ Enterprise Linux Version2.1 Editionworkstation

Redhat ≫ Enterprise Linux Version2.1 Editionworkstation_ia64

Redhat ≫ Enterprise Linux Version3.0 Editionadvanced_server

Redhat ≫ Enterprise Linux Version3.0 Editionenterprise_server

Redhat ≫ Enterprise Linux Version3.0 Editionworkstation_server

Redhat ≫ Enterprise Linux Version4.0 Editionadvanced_server

Redhat ≫ Enterprise Linux Version4.0 Editionenterprise_server

Redhat ≫ Enterprise Linux Version4.0 Editionworkstation

Redhat ≫ Enterprise Linux Desktop Version3.0

Redhat ≫ Enterprise Linux Desktop Version4.0

Redhat ≫ Fedora Core Versioncore_1.0

Redhat ≫ Fedora Core Versioncore_2.0

Redhat ≫ Fedora Core Versioncore_3.0

Redhat ≫ Fedora Core Versioncore_4.0

Redhat ≫ Linux Version7.3 Editioni386

Redhat ≫ Linux Version9.0 Editioni386

Redhat ≫ Linux Advanced Workstation Version2.1 Editionia64

Redhat ≫ Linux Advanced Workstation Version2.1 Editionitanium

Sco ≫ Openserver Version5.0.7

Sco ≫ Openserver Version6.0

Slackware ≫ Slackware Linux Version9.0

Slackware ≫ Slackware Linux Version9.1

Slackware ≫ Slackware Linux Version10.0

Slackware ≫ Slackware Linux Version10.1

Slackware ≫ Slackware Linux Version10.2

Suse ≫ Suse Linux Version1.0

Suse ≫ Suse Linux Version9.0 Editionenterprise_server

Suse ≫ Suse Linux Version9.0 Editionpersonal

Suse ≫ Suse Linux Version9.0 Editionprofessional

Suse ≫ Suse Linux Version9.0 Editions_390

Suse ≫ Suse Linux Version9.0 Editionx86_64

Suse ≫ Suse Linux Version9.1 Editionpersonal

Suse ≫ Suse Linux Version9.1 Editionprofessional

Suse ≫ Suse Linux Version9.1 Editionx86_64

Suse ≫ Suse Linux Version9.2 Editionpersonal

Suse ≫ Suse Linux Version9.2 Editionprofessional

Suse ≫ Suse Linux Version9.2 Editionx86_64

Suse ≫ Suse Linux Version9.3 Editionpersonal

Suse ≫ Suse Linux Version9.3 Editionprofessional

Suse ≫ Suse Linux Version9.3 Editionx86_64

Suse ≫ Suse Linux Version10.0 Editionoss

Suse ≫ Suse Linux Version10.0 Editionprofessional

Trustix ≫ Secure Linux Version2.0

Trustix ≫ Secure Linux Version2.2

Trustix ≫ Secure Linux Version3.0

Turbolinux ≫ Turbolinux Version10

Turbolinux ≫ Turbolinux Versionfuji

Turbolinux ≫ Turbolinux Appliance Server Version1.0_hosting_edition

Turbolinux ≫ Turbolinux Appliance Server Version1.0_workgroup_edition

Turbolinux ≫ Turbolinux Desktop Version10.0

Turbolinux ≫ Turbolinux Home

Turbolinux ≫ Turbolinux Multimedia

Turbolinux ≫ Turbolinux Personal

Turbolinux ≫ Turbolinux Server Version8.0

Turbolinux ≫ Turbolinux Server Version10.0

Turbolinux ≫ Turbolinux Server Version10.0_x86

Turbolinux ≫ Turbolinux Workstation Version8.0

Ubuntu ≫ Ubuntu Linux Version4.1 Editionia64

Ubuntu ≫ Ubuntu Linux Version4.1 Editionppc

Ubuntu ≫ Ubuntu Linux Version5.04 Editionamd64

Ubuntu ≫ Ubuntu Linux Version5.04 Editioni386

Ubuntu ≫ Ubuntu Linux Version5.04 Editionpowerpc

Ubuntu ≫ Ubuntu Linux Version5.10 Editionamd64

Ubuntu ≫ Ubuntu Linux Version5.10 Editioni386

Ubuntu ≫ Ubuntu Linux Version5.10 Editionpowerpc

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	11.29%	0.929

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	10	10	10	AV:N/AC:L/Au:N/C:C/I:C/A:C

ftp://patches.sgi.com/support/free/security/advisories/20060101-01-U

http://secunia.com/advisories/18517

Patch

Vendor Advisory

http://secunia.com/advisories/18398

Patch

Vendor Advisory

http://secunia.com/advisories/18407

Patch

Vendor Advisory

http://secunia.com/advisories/25729

http://sunsolve.sun.com/search/document.do?assetkey=1-26-102972-1

http://www.debian.org/security/2006/dsa-936

Patch

Vendor Advisory

http://www.securityfocus.com/archive/1/427053/100/0/threaded

http://www.securityfocus.com/archive/1/427990/100/0/threaded

http://www.vupen.com/english/advisories/2007/2280

ftp://patches.sgi.com/support/free/security/advisories/20051201-01-U

http://secunia.com/advisories/18554

Patch

Vendor Advisory

ftp://patches.sgi.com/support/free/security/advisories/20060201-01-U

http://secunia.com/advisories/19230

ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.15/SCOSA-2006.15.txt

http://lists.suse.com/archive/suse-security-announce/2006-Jan/0001.html

Patch

http://secunia.com/advisories/18147

http://secunia.com/advisories/18303

Patch

Vendor Advisory

http://secunia.com/advisories/18313

Patch

Vendor Advisory

http://secunia.com/advisories/18349

Patch

Vendor Advisory

http://secunia.com/advisories/18380

http://secunia.com/advisories/18385

Patch

Vendor Advisory

http://secunia.com/advisories/18387

Patch

Vendor Advisory

http://secunia.com/advisories/18389

Patch

Vendor Advisory

http://secunia.com/advisories/18416

Patch

Vendor Advisory

http://secunia.com/advisories/18448

Patch

Vendor Advisory

http://secunia.com/advisories/18534

Patch

Vendor Advisory

http://secunia.com/advisories/18582

Patch

Vendor Advisory

http://secunia.com/advisories/18674

Vendor Advisory

http://secunia.com/advisories/18675

Vendor Advisory

http://secunia.com/advisories/18679

Vendor Advisory

http://secunia.com/advisories/18908

Vendor Advisory

http://secunia.com/advisories/18913

http://secunia.com/advisories/19377

http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.472683

http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.474747

http://www.debian.org/security/2005/dsa-931

http://www.debian.org/security/2005/dsa-932

http://www.debian.org/security/2005/dsa-937

http://www.debian.org/security/2005/dsa-938

http://www.debian.org/security/2005/dsa-940

http://www.debian.org/security/2006/dsa-950

Patch

Vendor Advisory

http://www.debian.org/security/2006/dsa-961

Patch

Vendor Advisory

http://www.debian.org/security/2006/dsa-962

http://www.gentoo.org/security/en/glsa/glsa-200601-02.xml

Patch

Vendor Advisory

http://www.kde.org/info/security/advisory-20051207-2.txt

Patch

Vendor Advisory

http://www.mandriva.com/security/advisories?name=MDKSA-2006:003

http://www.mandriva.com/security/advisories?name=MDKSA-2006:004

http://www.mandriva.com/security/advisories?name=MDKSA-2006:005

http://www.mandriva.com/security/advisories?name=MDKSA-2006:006

http://www.mandriva.com/security/advisories?name=MDKSA-2006:008

http://www.mandriva.com/security/advisories?name=MDKSA-2006:010

http://www.mandriva.com/security/advisories?name=MDKSA-2006:011

http://www.mandriva.com/security/advisories?name=MDKSA-2006:012

http://www.redhat.com/support/errata/RHSA-2006-0160.html

Patch

Vendor Advisory

http://secunia.com/advisories/18428

http://secunia.com/advisories/18436

http://scary.beasts.org/security/CESA-2005-003.txt

Exploit

http://secunia.com/advisories/18463

http://www.trustix.org/errata/2006/0002/

http://rhn.redhat.com/errata/RHSA-2006-0177.html

Patch

Vendor Advisory

http://secunia.com/advisories/18312

Patch

Vendor Advisory

http://secunia.com/advisories/18329

Vendor Advisory

http://secunia.com/advisories/18332

Vendor Advisory

http://secunia.com/advisories/18334

Patch

Vendor Advisory

http://secunia.com/advisories/18338

Patch

Vendor Advisory

http://secunia.com/advisories/18373

http://secunia.com/advisories/18375

Vendor Advisory

http://secunia.com/advisories/18414

http://secunia.com/advisories/18423

Patch

Vendor Advisory

http://secunia.com/advisories/18425

http://secunia.com/advisories/18642

Vendor Advisory

http://secunia.com/advisories/18644

Vendor Advisory

http://www.gentoo.org/security/en/glsa/glsa-200601-17.xml

http://www.redhat.com/archives/fedora-announce-list/2006-January/msg00030.html

http://www.redhat.com/archives/fedora-announce-list/2006-January/msg00031.html

http://www.redhat.com/support/errata/RHSA-2006-0163.html

http://www.securityfocus.com/bid/16143

Patch

http://www.vupen.com/english/advisories/2006/0047

https://usn.ubuntu.com/236-1/

http://secunia.com/advisories/18335

Patch

Vendor Advisory

http://www.redhat.com/archives/fedora-announce-list/2006-January/msg00010.html

Patch

http://www.redhat.com/archives/fedora-announce-list/2006-January/msg00011.html

Patch

https://exchange.xforce.ibmcloud.com/vulnerabilities/24023

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9575

https://nvd.nist.gov/vuln/detail/CVE-2005-3625

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2005-3625

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2005-3625

EUVD