5

CVE-2009-0755

Exploit
The FormWidgetChoice::loadDefaults function in Poppler before 0.10.4 allows remote attackers to cause a denial of service (crash) via a PDF file with an invalid Form Opt entry.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
PopplerPoppler Version <= 0.10.3
PopplerPoppler Version0.1
PopplerPoppler Version0.1.1
PopplerPoppler Version0.1.2
PopplerPoppler Version0.2.0
PopplerPoppler Version0.3.0
PopplerPoppler Version0.3.1
PopplerPoppler Version0.3.2
PopplerPoppler Version0.3.3
PopplerPoppler Version0.4.0
PopplerPoppler Version0.4.1
PopplerPoppler Version0.4.2
PopplerPoppler Version0.4.3
PopplerPoppler Version0.4.4
PopplerPoppler Version0.5.0
PopplerPoppler Version0.5.1
PopplerPoppler Version0.5.2
PopplerPoppler Version0.5.3
PopplerPoppler Version0.5.4
PopplerPoppler Version0.5.9
PopplerPoppler Version0.5.90
PopplerPoppler Version0.5.91
PopplerPoppler Version0.6.0
PopplerPoppler Version0.6.1
PopplerPoppler Version0.6.2
PopplerPoppler Version0.6.3
PopplerPoppler Version0.6.4
PopplerPoppler Version0.7.0
PopplerPoppler Version0.7.1
PopplerPoppler Version0.7.2
PopplerPoppler Version0.7.3
PopplerPoppler Version0.8.4
PopplerPoppler Version0.10.1
PopplerPoppler Version0.10.2
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 10.81% 0.953
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html
http://secunia.com/advisories/35685
http://bugs.freedesktop.org/show_bug.cgi?id=19790
http://lists.freedesktop.org/archives/poppler/2009-January/004406.html
Exploit
http://secunia.com/advisories/33853
Vendor Advisory
http://secunia.com/advisories/37114
http://wiki.rpath.com/Advisories:rPSA-2009-0059
http://www.debian.org/security/2009/dsa-1941
http://www.openwall.com/lists/oss-security/2009/02/13/1
http://www.openwall.com/lists/oss-security/2009/02/19/2
http://www.securityfocus.com/archive/1/502761/100/0/threaded
http://www.securityfocus.com/bid/33749
http://www.ubuntu.com/usn/USN-850-1