Vulnerability CVE-2005-0206


Published: 2005-04-27   Modified: 2012-02-12

Description:
The patch for integer overflow vulnerabilities in Xpdf 2.0 and 3.0 (CVE-2004-0888) is incomplete for 64-bit architectures on certain Linux distributions such as Red Hat, which could leave Xpdf users exposed to the original vulnerabilities.

Vendor: Redhat
Product: Fedora core 
Version:
core_3.0
core_2.0
core_1.0
See more versions on NVD
Product: Linux 
Version: 9.0;
Product: Enterprise linux desktop 
Version: 3.0;
Product: Enterprise linux 
Version: 3.0; 2.1;
Product: Linux advanced workstation 
Version: 2.1;
Vendor: SUSE
Product: Suse linux 
Version:
9.2
9.1
9.0
8.2
8.1
8.0
7.3
7.2
7.1
7.0
6.4
6.3
6.2
6.1
6.0
5.3
5.2
5.1
5.0
4.4.1
4.4
4.3
4.2
4.0
3.0
2.0
1.0
See more versions on NVD
Vendor: Ubuntu
Product: Ubuntu linux 
Version: 4.1;
Vendor: KDE
Product: KDE 
Version:
3.3.1
3.3
3.2.3
3.2.2
3.2.1
3.2
See more versions on NVD
Product: KPDF 
Version: 3.2;
Product: Koffice 
Version:
1.3_beta3
1.3_beta2
1.3_beta1
1.3.3
1.3.2
1.3.1
1.3
See more versions on NVD
Vendor: Ascii
Product: PTEX 
Version: 3.1.4;
Vendor: XPDF
Product: XPDF 
Version:
3.0
2.3
2.1
2.0
1.1
1.0a
1.0
0.93
0.92
0.91
0.90
See more versions on NVD
Vendor: Mandrakesoft
Product: Mandrake linux corporate server 
Version: 3.0;
Vendor: SGI
Product: Propack 
Version: 3.0;
Product: Advanced linux environment 
Version: 3.0;
Vendor: Debian
Product: Debian linux 
Version: 3.0;
Vendor: Cstex
Product: Cstetex 
Version: 2.0.2;
Vendor: Tetex
Product: Tetex 
Version:
2.0.2
2.0.1
2.0
1.0.7
1.0.6
See more versions on NVD
Vendor: Easy software products
Product: CUPS 
Version:
1.1.7
1.1.6
1.1.4_5
1.1.4_3
1.1.4_2
1.1.4
1.1.20
1.1.19_rc5
1.1.19
1.1.18
1.1.17
1.1.16
1.1.15
1.1.14
1.1.13
1.1.12
1.1.10
1.1.1
1.0.4_8
1.0.4
See more versions on NVD
Vendor: Pdftohtml
Product: Pdftohtml 
Version:
0.36
0.35
0.34
0.33a
0.33
0.32b
0.32a
See more versions on NVD
Vendor: Gnome
Product: GPDF 
Version: 0.131;

CVSS2 => (AV:N/AC:L/Au:N/C:P/I:P/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.5/10
6.4/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
Partial

 References:
http://www.mandriva.com/security/advisories?name=MDKSA-2005:041
http://www.mandriva.com/security/advisories?name=MDKSA-2005:042
http://www.mandriva.com/security/advisories?name=MDKSA-2005:043
http://www.mandriva.com/security/advisories?name=MDKSA-2005:044
http://www.mandriva.com/security/advisories?name=MDKSA-2005:052
http://www.mandriva.com/security/advisories?name=MDKSA-2005:056
http://www.redhat.com/support/errata/RHSA-2005-034.html
http://www.redhat.com/support/errata/RHSA-2005-053.html
http://www.redhat.com/support/errata/RHSA-2005-057.html
http://www.redhat.com/support/errata/RHSA-2005-132.html
http://www.redhat.com/support/errata/RHSA-2005-213.html
http://www.securityfocus.com/bid/11501
https://exchange.xforce.ibmcloud.com/vulnerabilities/17818
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11107

Related CVE
CVE-2019-1010006
Evince 3.26.0 is affected by buffer overflow. The impact is: DOS / Possible code execution. The component is: backend/tiff/tiff-document.c. The attack vector is: Victim must open a crafted PDF file. The issue occurs because of an incorrect integer ov...
CVE-2019-13012
The keyfile settings backend in GNOME GLib (aka glib2.0) before 2.59.1 creates directories using g_file_make_directory_with_parents (kfsb->dir, NULL, NULL) and files using g_file_replace_contents (kfsb->file, contents, length, NULL, FALSE, G_FILE_CRE...
CVE-2019-12795
daemon/gvfsdaemon.c in gvfsd from GNOME gvfs before 1.38.3, 1.40.x before 1.40.2, and 1.41.x before 1.41.3 opened a private D-Bus server socket without configuring an authorization rule. A local attacker could connect to this server socket and issue ...
CVE-2019-12450
file_copy_fallback in gio/gfile.c in GNOME GLib 2.15.0 through 2.61.1 does not properly restrict file permissions while a copy operation is in progress. Instead, default permissions are used.
CVE-2019-12449
An issue was discovered in GNOME gvfs 1.29.4 through 1.41.2. daemon/gvfsbackendadmin.c mishandles a file's user and group ownership during move (and copy with G_FILE_COPY_ALL_METADATA) operations from admin:// to file:// URIs, because root privileges...
CVE-2019-12448
An issue was discovered in GNOME gvfs 1.29.4 through 1.41.2. daemon/gvfsbackendadmin.c has race conditions because the admin backend doesn't implement query_info_on_read/write.
CVE-2019-12447
An issue was discovered in GNOME gvfs 1.29.4 through 1.41.2. daemon/gvfsbackendadmin.c mishandles file ownership because setfsuid is not used.
CVE-2019-11460
An issue was discovered in GNOME gnome-desktop 3.26, 3.28, and 3.30 prior to 3.30.2.2, and 3.32 prior to 3.32.1.1. A compromised thumbnailer may escape the bubblewrap sandbox used to confine thumbnailers by using the TIOCSTI ioctl to push characters ...

Copyright 2019, cxsecurity.com

 

Back to Top