Show filters
54 Total Results
Displaying 41-50 of 54
Sort by:
Attacker Value
Unknown

CVE-2009-1180

Disclosure Date: April 23, 2009 (last updated October 04, 2023)
The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to execute arbitrary code via a crafted PDF file that triggers a free of invalid data.
0
Attacker Value
Unknown

CVE-2009-1144

Disclosure Date: April 09, 2009 (last updated October 04, 2023)
Untrusted search path vulnerability in the Gentoo package of Xpdf before 3.02-r2 allows local users to gain privileges via a Trojan horse xpdfrc file in the current working directory, related to an unset SYSTEM_XPDFRC macro in a Gentoo build process that uses the poppler library.
0
Attacker Value
Unknown

CVE-2009-0928

Disclosure Date: March 25, 2009 (last updated October 04, 2023)
Heap-based buffer overflow in Adobe Acrobat Reader and Acrobat Professional 7.1.0, 8.1.3, 9.0.0, and other versions allows remote attackers to execute arbitrary code via a PDF file containing a JBIG2 stream with a size inconsistency related to an unspecified table.
0
Attacker Value
Unknown

CVE-2009-1062

Disclosure Date: March 25, 2009 (last updated October 04, 2023)
Adobe Acrobat Reader 9 before 9.1, 8 before 8.1.4, and 7 before 7.1.1 might allow remote attackers to trigger memory corruption and possibly execute arbitrary code via unknown attack vectors related to JBIG2, a different vulnerability than CVE-2009-0193 and CVE-2009-1061.
0
Attacker Value
Unknown

CVE-2009-0191

Disclosure Date: March 10, 2009 (last updated October 04, 2023)
Foxit Reader 2.3 before Build 3902 and 3.0 before Build 1506, including 3.0.2009.1301, does not properly handle a JBIG2 symbol dictionary segment with zero new symbols, which allows remote attackers to execute arbitrary code via a crafted PDF file that triggers a dereference of an uninitialized memory location.
0
Attacker Value
Unknown

CVE-2009-0836

Disclosure Date: March 10, 2009 (last updated October 04, 2023)
Foxit Reader 2.3 before Build 3902 and 3.0 before Build 1506, including 1120 and 1301, does not require user confirmation before performing dangerous actions defined in a PDF file, which allows remote attackers to execute arbitrary programs and have unspecified other impact via a crafted file, as demonstrated by the "Open/Execute a file" action.
0
Attacker Value
Unknown

CVE-2008-2641

Disclosure Date: June 25, 2008 (last updated October 04, 2023)
Unspecified vulnerability in Adobe Reader and Acrobat 7.0.9 and earlier, and 8.0 through 8.1.2, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unknown vectors, related to an "input validation issue in a JavaScript method."
0
Attacker Value
Unknown

CVE-2008-2549

Disclosure Date: June 04, 2008 (last updated October 04, 2023)
Adobe Acrobat Reader 8.1.2 and earlier, and before 7.1.1, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a malformed PDF document, as demonstrated by 2008-HI2.pdf.
0
Attacker Value
Unknown

CVE-2008-2042

Disclosure Date: May 08, 2008 (last updated October 04, 2023)
The Javascript API in Adobe Acrobat Professional 7.0.9 and possibly 8.1.1 exposes a dangerous method, which allows remote attackers to execute arbitrary commands or trigger a buffer overflow via a crafted PDF file that invokes app.checkForUpdate with a malicious callback function.
0
Attacker Value
Unknown

CVE-2006-5857

Disclosure Date: December 31, 2006 (last updated October 04, 2023)
Adobe Reader and Acrobat 7.0.8 and earlier allows user-assisted remote attackers to execute code via a crafted PDF file that triggers memory corruption and overwrites a subroutine pointer during rendering.
0