CVE-2010-3704
Published: May 11, 2010
The FoFiType1::parse function in fofi/FoFiType1.cc in the PDF parser in xpdf before 3.02pl5, poppler 0.8.7 and possibly other versions up to 0.15.1, kdegraphics, and possibly other products allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a PDF file with a crafted PostScript Type1 font that contains a negative array index, which bypasses input validation and triggers memory corruption.
MEDIUM
CVSS v2: 6.8
CVSS v2: 6.8
Status
| DocFilters Release | Package | State | Justification | Comment |
|---|---|---|---|---|
| 25.1 | xpdf (4.05) | Not Affected | Code Not Present | 4.05 does not match CVE configuration. |
| 24.4 | xpdf (4.05) | Not Affected | Code Not Present | 4.05 does not match CVE configuration. |
| 24.4.0 | xpdf (4.05) | Not Affected | Code Not Present | 4.05 does not match CVE configuration. |
| 24.3 | xpdf (4.05) | Not Affected | Code Not Present | 4.05 does not match CVE configuration. |
| 24.2.1 | xpdf (4.05) | Not Affected | Code Not Present | 4.05 does not match CVE configuration. |
| 24.2 | xpdf (4.05) | Not Affected | Code Not Present | 4.05 does not match CVE configuration. |
| 24.1 | xpdf (3.02) | Resolved | Code Not Present | Patched applied from about:blank |
| 23.3 | xpdf (3.02) | Resolved | Code Not Present | Patched applied from about:blank |
| 23.2.1 | xpdf (3.02) | Resolved | Code Not Present | Patched applied from about:blank |
| 23.2 | xpdf (3.02) | Resolved | Code Not Present | Patched applied from about:blank |
| 23.1 | xpdf (3.02) | Resolved | Code Not Present | Patched applied from about:blank |