Attacker Value

Unknown

(0 users assessed)

Exploitability

Unknown

(0 users assessed)

User Interaction

Unknown

Privileges Required

Unknown

Attack Vector

Unknown

0

CVE-2005-3191

Disclosure Date: December 07, 2005 •

MITRE ATT&CK

Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

Multiple heap-based buffer overflows in the (1) DCTStream::readProgressiveSOF and (2) DCTStream::readBaselineSOF functions in the DCT stream parsing code (Stream.cc) in xpdf 3.01 and earlier, as used in products such as (a) Poppler, (b) teTeX, © KDE kpdf, (d) pdftohtml, (e) KOffice KWord, (f) CUPS, and (g) libextractor allow user-assisted attackers to cause a denial of service (heap corruption) and possibly execute arbitrary code via a crafted PDF file with an out-of-range number of components (numComps), which is used as an array index.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics

Data provided by the National Vulnerability Database (NVD)

Base Score:

None

Impact Score:

Unknown

Exploitability Score:

Unknown

Vector:

Attack Vector (AV):

Unknown

Attack Complexity (AC):

Unknown

Privileges Required (PR):

Unknown

User Interaction (UI):

Unknown

Scope (S):

Unknown

Confidentiality (C):

Unknown

Integrity (I):

Unknown

Availability (A):

Unknown

Vendors

xpdf

Products

xpdf 0.90,
xpdf 0.91,
xpdf 0.92,
xpdf 0.93,
xpdf 1.0,
xpdf 1.0a,
xpdf 1.1,
xpdf 2.0,
xpdf 2.1,
xpdf 2.2,
xpdf 2.3,
xpdf 3.0,
xpdf 3.0 pl2,
xpdf 3.0 pl3,
xpdf 3.0.1

References

Canonical

CVE-2005-3191 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3191)

BID-15727 (http://www.securityfocus.com/bid/15727)

BID-15726 (http://www.securityfocus.com/bid/15726)

Advisory

SREASON-234 (http://securityreason.com/securityalert/234)

SECUNIA-17929 (http://secunia.com/advisories/17929)

SECUNIA-19797 (http://secunia.com/advisories/19797)

SREASON-233 (http://securityreason.com/securityalert/233)

DSA-932 (http://www.debian.org/security/2005/dsa-932)

SECUNIA-18349 (http://secunia.com/advisories/18349)

SECUNIA-18147 (http://secunia.com/advisories/18147)

SECUNIA-18055 (http://secunia.com/advisories/18055)

http://www.kde.org/info/security/advisory-20051207-1.txt

SECUNIA-18503 (http://secunia.com/advisories/18503)

SECUNIA-18549 (http://secunia.com/advisories/18549)

http://www.kde.org/info/security/advisory-20051207-2.txt

SECUNIA-18679 (http://secunia.com/advisories/18679)

SECUNIA-18189 (http://secunia.com/advisories/18189)

SECUNIA-26413 (http://secunia.com/advisories/26413)

SECUNIA-17940 (http://secunia.com/advisories/17940)

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9760

XF-xpdf-dctstream-baseline-bo(23444) (https://exchange.xforce.ibmcloud.com/vulnerabilities/23444)

SECUNIA-18303 (http://secunia.com/advisories/18303)

DSA-931 (http://www.debian.org/security/2005/dsa-931)

SECUNIA-18554 (http://secunia.com/advisories/18554)

http://www.mandriva.com/security/advisories?name=MDKSA-2006:003

SECUNIA-19230 (http://secunia.com/advisories/19230)

SUNALERT-102972 (http://sunsolve.sun.com/search/document.do?assetkey=1-26-102972-1)

http://www.mandriva.com/security/advisories?name=MDKSA-2006:012

DSA-962 (http://www.debian.org/security/2006/dsa-962)

SECTRACK-1015309 (http://securitytracker.com/id?1015309)

DSA-937 (http://www.debian.org/security/2005/dsa-937)

SECUNIA-18398 (http://secunia.com/advisories/18398)

http://www.securityfocus.com/archive/1/427053/100/0/threaded

http://lists.suse.com/archive/suse-security-announce/2006-Jan/0001.html

DSA-936 (http://www.debian.org/security/2006/dsa-936)

SECUNIA-17916 (http://secunia.com/advisories/17916)

http://www.redhat.com/support/errata/RHSA-2005-840.html

ADV-2005-2789 (http://www.vupen.com/english/advisories/2005/2789)

http://www.redhat.com/support/errata/RHSA-2005-867.html

SECUNIA-18674 (http://secunia.com/advisories/18674)

http://www.mandriva.com/security/advisories?name=MDKSA-2006:005

SECUNIA-18313 (http://secunia.com/advisories/18313)

https://issues.rpath.com/browse/RPL-1609

http://rhn.redhat.com/errata/RHSA-2005-868.html

SECUNIA-18448 (http://secunia.com/advisories/18448)

SECUNIA-18436 (http://secunia.com/advisories/18436)

SECUNIA-18428 (http://secunia.com/advisories/18428)

SECUNIA-18380 (http://secunia.com/advisories/18380)

GLSA-200512-08 (http://www.gentoo.org/security/en/glsa/glsa-200512-08.xml)

FEDORA-2005-1126 (http://www.redhat.com/archives/fedora-announce-list/2005-December/msg00015.html)

SECUNIA-18416 (http://secunia.com/advisories/18416)

ADV-2007-2280 (http://www.vupen.com/english/advisories/2007/2280)

GLSA-200601-02 (http://www.gentoo.org/security/en/glsa/glsa-200601-02.xml)

FEDORA-2005-1142 (http://www.redhat.com/archives/fedora-announce-list/2005-December/msg00037.html)

SECUNIA-18336 (http://secunia.com/advisories/18336)

SECUNIA-18061 (http://secunia.com/advisories/18061)

SECUNIA-18407 (http://secunia.com/advisories/18407)

SECUNIA-18009 (http://secunia.com/advisories/18009)

SECUNIA-17908 (http://secunia.com/advisories/17908)

USN-227-1 (http://www.ubuntulinux.org/usn/usn-227-1)

SECUNIA-17897 (http://secunia.com/advisories/17897)

SECUNIA-18517 (http://secunia.com/advisories/18517)

SECUNIA-18582 (http://secunia.com/advisories/18582)

http://www.novell.com/linux/security/advisories/2006_02_sr.html

SECUNIA-18534 (http://secunia.com/advisories/18534)

FEDORA-2005-1127 (http://www.redhat.com/archives/fedora-announce-list/2005-December/msg00016.html)

20051207 [KDE Security Advisory] multiple buffer overflows in kpdf/koffice (http://www.securityfocus.com/archive/1/418883/100/0/threaded)

XF-xpdf-dctstream-progressive-bo(23443) (https://exchange.xforce.ibmcloud.com/vulnerabilities/23443)

SECUNIA-18908 (http://secunia.com/advisories/18908)

SECUNIA-25729 (http://secunia.com/advisories/25729)

ADV-2005-2786 (http://www.vupen.com/english/advisories/2005/2786)

http://www.mandriva.com/security/advisories?name=MDKSA-2006:006

ADV-2005-2788 (http://www.vupen.com/english/advisories/2005/2788)

SECUNIA-17926 (http://secunia.com/advisories/17926)

SECUNIA-19798 (http://secunia.com/advisories/19798)

http://www.mandriva.com/security/advisories?name=MDKSA-2006:008

SECUNIA-18191 (http://secunia.com/advisories/18191)

http://www.redhat.com/support/errata/RHSA-2006-0160.html

SECUNIA-17912 (http://secunia.com/advisories/17912)

SECUNIA-17921 (http://secunia.com/advisories/17921)

DSA-940 (http://www.debian.org/security/2005/dsa-940)

http://www.mandriva.com/security/advisories?name=MDKSA-2006:004

ADV-2005-2790 (http://www.vupen.com/english/advisories/2005/2790)

SECUNIA-18389 (http://secunia.com/advisories/18389)

SECUNIA-18192 (http://secunia.com/advisories/18192)

ADV-2005-2856 (http://www.vupen.com/english/advisories/2005/2856)

SECUNIA-19377 (http://secunia.com/advisories/19377)

http://www.securityfocus.com/archive/1/427990/100/0/threaded

DSA-961 (http://www.debian.org/security/2006/dsa-961)

SECUNIA-18675 (http://secunia.com/advisories/18675)

SECTRACK-1015324 (http://securitytracker.com/id?1015324)

SECUNIA-18913 (http://secunia.com/advisories/18913)

DSA-938 (http://www.debian.org/security/2005/dsa-938)

http://www.novell.com/linux/security/advisories/2005_29_sr.html

ADV-2005-2787 (http://www.vupen.com/english/advisories/2005/2787)

http://www.redhat.com/support/errata/RHSA-2005-878.html

FEDORA-2005-1141 (http://www.redhat.com/archives/fedora-announce-list/2005-December/msg00036.html)

SECUNIA-17920 (http://secunia.com/advisories/17920)

DSA-950 (http://www.debian.org/security/2006/dsa-950)

SECUNIA-17955 (http://secunia.com/advisories/17955)

SECUNIA-17976 (http://secunia.com/advisories/17976)

SECUNIA-18387 (http://secunia.com/advisories/18387)

http://www.mandriva.com/security/advisories?name=MDKSA-2006:011

SECUNIA-18385 (http://secunia.com/advisories/18385)

Miscellaneous

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=342289

20051205 Multiple Vendor xpdf DCTStream Progressive Heap Overflow (http://www.idefense.com/application/poi/display?id=343&type=vulnerabilities)

Multiple Vendor xpdf DCTStream Baseline Heap Overflow Vulnerability (http://www.idefense.com/application/poi/display?id=342&type=vulnerabilities)

http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.472683

TSLSA-2005-0072 (http://www.trustix.org/errata/2005/0072)

http://www.mandriva.com/security/advisories?name=MDKSA-2006:010

http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.474747

Rapid7

Technical Analysis