NVD Vulnerability Detail

Search Exploit, PoC

Exploit DB

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2005-3628

Summary	Buffer overflow in the JBIG2Bitmap::JBIG2Bitmap function in JBIG2Stream.cc in Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to modify memory and possibly execute arbitrary code via unknown attack vectors.
Publication Date	Dec. 31, 2005, 2 p.m.
Registration Date	Jan. 29, 2021, 5:59 p.m.
Last Update	Oct. 20, 2018, 12:38 a.m.

CVSS2.0 : HIGH
Score	7.5
Vector	AV:N/AC:L/Au:N/C:P/I:P/A:P
攻撃元区分(AV)	ネットワーク
攻撃条件の複雑さ(AC)	低
攻撃前の認証要否(Au)	不要
機密性への影響(C)	低
完全性への影響(I)	低
可用性への影響(A)	低
Get all privileges.	いいえ
Get user privileges	はい
Get other privileges	いいえ
User operation required	いいえ

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:a:xpdf:xpdf::::::::

Related information, measures and tools

No	URL	refsource	タグ
1	ftp://patches.sgi.com/support/free/security/advisories/20060201-01-U	SGI
2	http://lists.suse.com/archive/suse-security-announce/2006-Jan/0001.html	SUSE	Patch Vendor Advisory
3	http://secunia.com/advisories/18147	SECUNIA
4	http://secunia.com/advisories/18380	SECUNIA
5	http://secunia.com/advisories/18385	SECUNIA	Patch Vendor Advisory
6	http://secunia.com/advisories/18387	SECUNIA	Patch Vendor Advisory
7	http://secunia.com/advisories/18389	SECUNIA	Patch Vendor Advisory
8	http://secunia.com/advisories/18398	SECUNIA	Patch Vendor Advisory
9	http://secunia.com/advisories/18407	SECUNIA	Patch Vendor Advisory
10	http://secunia.com/advisories/18416	SECUNIA	Patch Vendor Advisory
11	http://secunia.com/advisories/18428	SECUNIA
12	http://secunia.com/advisories/18436	SECUNIA
13	http://secunia.com/advisories/18534	SECUNIA	Patch Vendor Advisory
14	http://secunia.com/advisories/18582	SECUNIA	Patch Vendor Advisory
15	http://secunia.com/advisories/18674	SECUNIA
16	http://secunia.com/advisories/18675	SECUNIA
17	http://secunia.com/advisories/18679	SECUNIA
18	http://secunia.com/advisories/18908	SECUNIA
19	http://secunia.com/advisories/18913	SECUNIA
20	http://secunia.com/advisories/19230	SECUNIA
21	http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.472683	SLACKWARE
22	http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.474747	SLACKWARE
23	http://www.debian.org/security/2005/dsa-931	DEBIAN
24	http://www.debian.org/security/2005/dsa-932	DEBIAN
25	http://www.debian.org/security/2005/dsa-937	DEBIAN
26	http://www.debian.org/security/2005/dsa-938	DEBIAN
27	http://www.debian.org/security/2005/dsa-940	DEBIAN
28	http://www.debian.org/security/2006/dsa-936	DEBIAN	Patch Vendor Advisory
29	http://www.debian.org/security/2006/dsa-950	DEBIAN	Patch Vendor Advisory
30	http://www.debian.org/security/2006/dsa-961	DEBIAN
31	http://www.debian.org/security/2006/dsa-962	DEBIAN
32	http://www.mandriva.com/security/advisories?name=MDKSA-2006:010	MANDRAKE
33	http://www.mandriva.com/security/advisories?name=MDKSA-2006:011	MANDRIVA
34	http://www.mandriva.com/security/advisories?name=MDKSA-2006:012	MANDRIVA
35	http://www.redhat.com/support/errata/RHSA-2006-0160.html	REDHAT	Patch Vendor Advisory
36	http://www.securityfocus.com/archive/1/427053/100/0/threaded	FEDORA
37	http://www.securityfocus.com/archive/1/427990/100/0/threaded	FEDORA
38	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10287	OVAL

Common Vulnerabilities List