CVE-2009-1179

EPSS 7.58%
Veröffentlicht 23.04.2009 17:30:01
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle secalert@redhat.com
CVE-Watchlists
Login
Unerledigt
Login

Integer overflow in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to execute arbitrary code via a crafted PDF file.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 52

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Foolabs ≫ Xpdf Version0.5a

Foolabs ≫ Xpdf Version0.7a

Foolabs ≫ Xpdf Version0.91a

Foolabs ≫ Xpdf Version0.91b

Foolabs ≫ Xpdf Version0.91c

Foolabs ≫ Xpdf Version0.92a

Foolabs ≫ Xpdf Version0.92b

Foolabs ≫ Xpdf Version0.92c

Foolabs ≫ Xpdf Version0.92d

Foolabs ≫ Xpdf Version0.92e

Foolabs ≫ Xpdf Version0.93a

Foolabs ≫ Xpdf Version0.93b

Foolabs ≫ Xpdf Version0.93c

Foolabs ≫ Xpdf Version1.00a

Glyphandcog ≫ Xpdfreader Version <= 3.02

Glyphandcog ≫ Xpdfreader Version0.2

Glyphandcog ≫ Xpdfreader Version0.3

Glyphandcog ≫ Xpdfreader Version0.4

Glyphandcog ≫ Xpdfreader Version0.5

Glyphandcog ≫ Xpdfreader Version0.6

Glyphandcog ≫ Xpdfreader Version0.7

Glyphandcog ≫ Xpdfreader Version0.80

Glyphandcog ≫ Xpdfreader Version0.90

Glyphandcog ≫ Xpdfreader Version0.91

Glyphandcog ≫ Xpdfreader Version0.92

Glyphandcog ≫ Xpdfreader Version0.93

Glyphandcog ≫ Xpdfreader Version1.00

Glyphandcog ≫ Xpdfreader Version1.01

Glyphandcog ≫ Xpdfreader Version2.00

Glyphandcog ≫ Xpdfreader Version2.01

Glyphandcog ≫ Xpdfreader Version2.02

Glyphandcog ≫ Xpdfreader Version2.03

Glyphandcog ≫ Xpdfreader Version3.00

Glyphandcog ≫ Xpdfreader Version3.01

Poppler ≫ Poppler Version <= 0.10.5

Poppler ≫ Poppler Version0.1

Poppler ≫ Poppler Version0.1.1

Poppler ≫ Poppler Version0.1.2

Poppler ≫ Poppler Version0.2.0

Poppler ≫ Poppler Version0.3.0

Poppler ≫ Poppler Version0.3.1

Poppler ≫ Poppler Version0.3.2

Poppler ≫ Poppler Version0.3.3

Poppler ≫ Poppler Version0.4.0

Poppler ≫ Poppler Version0.4.1

Poppler ≫ Poppler Version0.4.2

Poppler ≫ Poppler Version0.4.3

Poppler ≫ Poppler Version0.4.4

Poppler ≫ Poppler Version0.5.0

Poppler ≫ Poppler Version0.5.1

Poppler ≫ Poppler Version0.5.2

Poppler ≫ Poppler Version0.5.3

Poppler ≫ Poppler Version0.5.4

Poppler ≫ Poppler Version0.5.9

Poppler ≫ Poppler Version0.5.90

Poppler ≫ Poppler Version0.5.91

Poppler ≫ Poppler Version0.6.0

Poppler ≫ Poppler Version0.6.1

Poppler ≫ Poppler Version0.6.2

Poppler ≫ Poppler Version0.6.3

Poppler ≫ Poppler Version0.6.4

Poppler ≫ Poppler Version0.7.0

Poppler ≫ Poppler Version0.7.1

Poppler ≫ Poppler Version0.7.2

Poppler ≫ Poppler Version0.7.3

Poppler ≫ Poppler Version0.8.0

Poppler ≫ Poppler Version0.8.1

Poppler ≫ Poppler Version0.8.2

Poppler ≫ Poppler Version0.8.3

Poppler ≫ Poppler Version0.8.4

Poppler ≫ Poppler Version0.8.5

Poppler ≫ Poppler Version0.8.6

Poppler ≫ Poppler Version0.8.7

Poppler ≫ Poppler Version0.9.0

Poppler ≫ Poppler Version0.9.1

Poppler ≫ Poppler Version0.9.2

Poppler ≫ Poppler Version0.9.3

Poppler ≫ Poppler Version0.10.0

Poppler ≫ Poppler Version0.10.1

Poppler ≫ Poppler Version0.10.2

Poppler ≫ Poppler Version0.10.3

Poppler ≫ Poppler Version0.10.4

Apple ≫ Cups Version <= 1.3.9

Apple ≫ Cups Version1.1

Apple ≫ Cups Version1.1.1

Apple ≫ Cups Version1.1.2

Apple ≫ Cups Version1.1.3

Apple ≫ Cups Version1.1.4

Apple ≫ Cups Version1.1.5

Apple ≫ Cups Version1.1.5-1

Apple ≫ Cups Version1.1.5-2

Apple ≫ Cups Version1.1.6

Apple ≫ Cups Version1.1.6-1

Apple ≫ Cups Version1.1.6-2

Apple ≫ Cups Version1.1.6-3

Apple ≫ Cups Version1.1.7

Apple ≫ Cups Version1.1.8

Apple ≫ Cups Version1.1.9

Apple ≫ Cups Version1.1.9-1

Apple ≫ Cups Version1.1.10

Apple ≫ Cups Version1.1.10-1

Apple ≫ Cups Version1.1.11

Apple ≫ Cups Version1.1.12

Apple ≫ Cups Version1.1.13

Apple ≫ Cups Version1.1.14

Apple ≫ Cups Version1.1.15

Apple ≫ Cups Version1.1.16

Apple ≫ Cups Version1.1.17

Apple ≫ Cups Version1.1.18

Apple ≫ Cups Version1.1.19

Apple ≫ Cups Version1.1.19 Updaterc1

Apple ≫ Cups Version1.1.19 Updaterc2

Apple ≫ Cups Version1.1.19 Updaterc3

Apple ≫ Cups Version1.1.19 Updaterc4

Apple ≫ Cups Version1.1.19 Updaterc5

Apple ≫ Cups Version1.1.20

Apple ≫ Cups Version1.1.20 Updaterc1

Apple ≫ Cups Version1.1.20 Updaterc2

Apple ≫ Cups Version1.1.20 Updaterc3

Apple ≫ Cups Version1.1.20 Updaterc4

Apple ≫ Cups Version1.1.20 Updaterc5

Apple ≫ Cups Version1.1.20 Updaterc6

Apple ≫ Cups Version1.1.21

Apple ≫ Cups Version1.1.21 Updaterc1

Apple ≫ Cups Version1.1.21 Updaterc2

Apple ≫ Cups Version1.1.22

Apple ≫ Cups Version1.1.22 Updaterc1

Apple ≫ Cups Version1.1.22 Updaterc2

Apple ≫ Cups Version1.1.23

Apple ≫ Cups Version1.1.23 Updaterc1

Apple ≫ Cups Version1.2.0

Apple ≫ Cups Version1.2.1

Apple ≫ Cups Version1.2.2

Apple ≫ Cups Version1.2.3

Apple ≫ Cups Version1.2.4

Apple ≫ Cups Version1.2.5

Apple ≫ Cups Version1.2.6

Apple ≫ Cups Version1.2.7

Apple ≫ Cups Version1.2.8

Apple ≫ Cups Version1.2.9

Apple ≫ Cups Version1.2.10

Apple ≫ Cups Version1.2.11

Apple ≫ Cups Version1.2.12

Apple ≫ Cups Version1.3.0

Apple ≫ Cups Version1.3.1

Apple ≫ Cups Version1.3.2

Apple ≫ Cups Version1.3.3

Apple ≫ Cups Version1.3.4

Apple ≫ Cups Version1.3.5

Apple ≫ Cups Version1.3.6

Apple ≫ Cups Version1.3.7

Apple ≫ Cups Version1.3.8

Apple ≫ Cups Version1.3.10

Apple ≫ Cups Version1.3.11

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	7.58%	0.914

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.8	8.6	6.4	AV:N/AC:M/Au:N/C:P/I:P/A:P

http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html

http://secunia.com/advisories/35379

Vendor Advisory

http://support.apple.com/kb/HT3613

http://www.vupen.com/english/advisories/2009/1522

Vendor Advisory

http://lists.opensuse.org/opensuse-security-announce/2009-05/msg00000.html

http://secunia.com/advisories/35065

Vendor Advisory

http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html

http://support.apple.com/kb/HT3639

http://www.vupen.com/english/advisories/2009/1621

Vendor Advisory

http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html

http://secunia.com/advisories/35685

Vendor Advisory

http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00011.html

http://rhn.redhat.com/errata/RHSA-2009-0458.html

http://secunia.com/advisories/34291

Vendor Advisory

http://secunia.com/advisories/34481

Vendor Advisory

http://secunia.com/advisories/34755

Vendor Advisory

http://secunia.com/advisories/34756

Vendor Advisory

http://secunia.com/advisories/34852

Vendor Advisory

http://secunia.com/advisories/34959

Vendor Advisory

http://secunia.com/advisories/34963

Vendor Advisory

http://secunia.com/advisories/34991

Vendor Advisory

http://secunia.com/advisories/35037

Vendor Advisory

http://secunia.com/advisories/35064

Vendor Advisory

http://secunia.com/advisories/35618

Vendor Advisory

http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.578477

http://www.debian.org/security/2009/dsa-1790

http://www.debian.org/security/2009/dsa-1793

http://www.mandriva.com/security/advisories?name=MDVSA-2009:101

http://www.mandriva.com/security/advisories?name=MDVSA-2010:087

http://www.redhat.com/support/errata/RHSA-2009-0429.html

http://www.redhat.com/support/errata/RHSA-2009-0430.html

Patch

http://www.redhat.com/support/errata/RHSA-2009-0431.html

http://www.redhat.com/support/errata/RHSA-2009-0480.html

http://www.securityfocus.com/bid/34568

http://www.securitytracker.com/id?1022073

http://www.vupen.com/english/advisories/2009/1065

Vendor Advisory

http://www.vupen.com/english/advisories/2009/1066

Vendor Advisory

http://www.vupen.com/english/advisories/2009/1077

Vendor Advisory

http://www.vupen.com/english/advisories/2010/1040

Vendor Advisory

https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00567.html

https://www.redhat.com/archives/fedora-package-announce/2009-June/msg01277.html

https://www.redhat.com/archives/fedora-package-announce/2009-June/msg01291.html

http://poppler.freedesktop.org/releases.html

http://secunia.com/advisories/34746

Vendor Advisory

http://www.kb.cert.org/vuls/id/196617

US Government Resource

http://www.mandriva.com/security/advisories?name=MDVSA-2011:175

http://www.vupen.com/english/advisories/2009/1076

Vendor Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=495889

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11892

https://nvd.nist.gov/vuln/detail/CVE-2009-1179

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2009-1179

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2009-1179

EUVD