CVE-2007-5392

Published: November 8th, 2007

Integer overflow in the DCTStream::reset method in xpdf/Stream.cc in Xpdf 3.02p11 allows remote attackers to execute arbitrary code via a crafted PDF file, resulting in a heap-based buffer overflow.

HIGH
CVSS v2: 9.3

Status

DocFilters Release	Package	State	Justification	Comment
0.0.0.1	xpdf (4.05)	Not Affected	Code Not Present	4.05 does not match CVE configuration.
26.1.1	xpdf (4.05)	Not Affected	Code Not Present	4.05 does not match CVE configuration.
26.1	xpdf (4.05)	Not Affected	Code Not Present	4.05 does not match CVE configuration.
25.4	xpdf (4.05)	Not Affected	Code Not Present	4.05 does not match CVE configuration.
25.3	xpdf (4.05)	Not Affected	Code Not Present	4.05 does not match CVE configuration.
25.2	xpdf (4.05)	Not Affected	Code Not Present	4.05 does not match CVE configuration.
25.1.2	xpdf (4.05)	Not Affected	Code Not Present	4.05 does not match CVE configuration.
25.1.1	xpdf (4.05)	Not Affected	Code Not Present	4.05 does not match CVE configuration.
25.1	xpdf (4.05)	Not Affected	Code Not Present	4.05 does not match CVE configuration.
24.4	xpdf (4.05)	Not Affected	Code Not Present	4.05 does not match CVE configuration.
24.4.0	xpdf (4.05)	Not Affected	Code Not Present	4.05 does not match CVE configuration.
24.3	xpdf (4.05)	Not Affected	Code Not Present	4.05 does not match CVE configuration.
24.2.1	xpdf (4.05)	Not Affected	Code Not Present	4.05 does not match CVE configuration.
24.2	xpdf (4.05)	Not Affected	Code Not Present	4.05 does not match CVE configuration.
24.1	xpdf (3.02)	Not Affected	Code Not Present	3.02 does not match CVE configuration.
23.3	xpdf (3.02)	Not Affected	Code Not Present	3.02 does not match CVE configuration.
23.2.1	xpdf (3.02)	Not Affected	Code Not Present	3.02 does not match CVE configuration.
23.2	xpdf (3.02)	Not Affected	Code Not Present	3.02 does not match CVE configuration.
23.1	xpdf (3.02)	Not Affected	Code Not Present	3.02 does not match CVE configuration.

Severity score breakdown

References

NVD
MITRE