CVE-2010-3702 - The Gfx::getPos function in the PDF parser in xpdf before 3.02pl5, poppler 0.8.7 and possibly other

CVE-2010-3702

Summary

The Gfx::getPos function in the PDF parser in xpdf before 3.02pl5, poppler 0.8.7 and possibly other versions up to 0.15.1, CUPS, kdegraphics, and possibly other products allows context-dependent attackers to cause a denial of service (crash) via unknown vectors that trigger an uninitialized pointer dereference.

References

Vulnerable Configurations

cpe:2.3:a:apple:cups:-:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:-:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.4:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.4:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.5:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.5:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.5-1:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.5-1:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.5-2:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.5-2:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.6:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.6:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.6-1:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.6-1:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.6-2:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.6-2:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.6-3:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.6-3:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.7:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.7:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.8:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.8:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.9:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.9:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.9-1:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.9-1:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.10:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.10:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.10-1:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.10-1:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.11:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.11:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.12:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.12:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.13:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.13:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.14:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.14:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.15:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.15:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.16:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.16:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.17:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.17:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.18:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.18:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.19:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.19:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.19:rc1:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.19:rc1:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.19:rc2:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.19:rc2:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.19:rc3:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.19:rc3:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.19:rc4:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.19:rc4:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.19:rc5:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.19:rc5:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.20:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.20:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.20:rc1:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.20:rc1:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.20:rc2:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.20:rc2:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.20:rc3:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.20:rc3:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.20:rc4:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.20:rc4:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.20:rc5:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.20:rc5:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.20:rc6:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.20:rc6:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.21:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.21:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.21:rc1:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.21:rc1:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.21:rc2:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.21:rc2:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.22:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.22:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.22:rc1:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.22:rc1:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.22:rc2:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.22:rc2:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.23:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.23:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.23:rc1:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.1.23:rc1:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2:b1:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2:b1:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2:b2:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2:b2:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2:rc1:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2:rc1:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2:rc2:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2:rc2:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2:rc3:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2:rc3:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2.4:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2.4:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2.5:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2.5:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2.6:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2.6:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2.7:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2.7:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2.8:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2.8:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2.9:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2.9:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2.10:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2.10:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2.11:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2.11:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2.12:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.2.12:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.3:b1:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.3:b1:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.3:rc1:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.3:rc1:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.3:rc2:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.3:rc2:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.3.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.3.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.3.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.3.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.3.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.3.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.3.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.3.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.3.4:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.3.4:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.3.5:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.3.5:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.3.6:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.3.6:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.3.7:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.3.7:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.3.8:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.3.8:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.3.9:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.3.9:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.3.10:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.3.10:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.3.11:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.3.11:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.8.7:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.8.7:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.9.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.9.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.9.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.9.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.9.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.9.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.9.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.9.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.5:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.5:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.6:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.6:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.7:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.7:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.11.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.11.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.11.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.11.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.11.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.11.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.11.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.11.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.12.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.12.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.12.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.12.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.12.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.12.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.12.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.12.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.12.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.12.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.13.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.13.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.13.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.13.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.13.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.13.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.13.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.13.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.13.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.13.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.14.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.14.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.14.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.14.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.14.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.14.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.14.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.14.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.14.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.14.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.14.5:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.14.5:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.15.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.15.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.15.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.15.1:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.2:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.2:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.3:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.3:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.4:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.4:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.5:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.5:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.6:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.6:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.7:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.7:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.7a:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.7a:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.80:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.80:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.90:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.90:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.91:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.91:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.91a:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.91a:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.91b:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.91b:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.91c:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.91c:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.92:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.92:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.92a:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.92a:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.92b:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.92b:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.92c:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.92c:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.92d:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.92d:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.92e:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.92e:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.93:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.93:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.93a:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:0.93a:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:1.00:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:1.00:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:1.01:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:1.01:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:2.00:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:2.00:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:2.01:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:2.01:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:2.02:-:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:2.02:-:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:2.02:pl1:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:2.02:pl1:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:2.03:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:2.03:*:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:3.00:-:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:3.00:-:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:3.00:pl1:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:3.00:pl1:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:3.00:pl2:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:3.00:pl2:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:3.00:pl3:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:3.00:pl3:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:3.01:-:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:3.01:-:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:3.01:pl1:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:3.01:pl1:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:3.01:pl2:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:3.01:pl2:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:3.02:-:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:3.02:-:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:3.02:pl1:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:3.02:pl1:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:3.02:pl2:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:3.02:pl2:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:3.02:pl3:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:3.02:pl3:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:3.02:pl4:*:*:*:*:*:*
cpe:2.3:a:xpdfreader:xpdf:3.02:pl4:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:12:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:12:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:13:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:13:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:14:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:14:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:11.1:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:11.1:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:11.2:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:11.2:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:11.3:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:11.3:*:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:9:*:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:9:*:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:10:sp3:*:*:-:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:10:sp3:*:*:-:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:11:-:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:11:-:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:9.04:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:9.04:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*

CVSS

Base:	7.5 (as of 23-12-2020 - 15:01)
Impact:
Exploitability:

CWE

CWE-476

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:P/A:P

redhat via4

advisories

bugzilla

id	595245
title	CVE-2010-3702 xpdf: uninitialized Gfx::parser pointer dereference

oval

comment Red Hat Enterprise Linux must be installed
oval oval:com.redhat.rhba:tst:20070304026

AND

comment Red Hat Enterprise Linux 4 is installed
oval oval:com.redhat.rhba:tst:20070304025

AND
comment cups is earlier than 1:1.1.22-0.rc1.9.32.el4_8.10
oval oval:com.redhat.rhsa:tst:20100755001
comment cups is signed with Red Hat master key
oval oval:com.redhat.rhsa:tst:20060163002
AND
comment cups-devel is earlier than 1:1.1.22-0.rc1.9.32.el4_8.10
oval oval:com.redhat.rhsa:tst:20100755003
comment cups-devel is signed with Red Hat master key
oval oval:com.redhat.rhsa:tst:20060163004
AND
comment cups-libs is earlier than 1:1.1.22-0.rc1.9.32.el4_8.10
oval oval:com.redhat.rhsa:tst:20100755005
comment cups-libs is signed with Red Hat master key
oval oval:com.redhat.rhsa:tst:20060163006

rhsa

id	RHSA-2010:0755
released	2010-10-07
severity	Important
title	RHSA-2010:0755: cups security update (Important)

rhsa
id RHSA-2010:0749
rhsa
id RHSA-2010:0750
rhsa
id RHSA-2010:0751
rhsa
id RHSA-2010:0752
rhsa
id RHSA-2010:0753
rhsa
id RHSA-2010:0754
rhsa
id RHSA-2010:0859
rhsa
id RHSA-2012:1201

rpms

poppler-0:0.5.4-4.4.el5_5.14
poppler-debuginfo-0:0.5.4-4.4.el5_5.14
poppler-devel-0:0.5.4-4.4.el5_5.14
poppler-utils-0:0.5.4-4.4.el5_5.14
xpdf-1:2.02-19.el3
xpdf-debuginfo-1:2.02-19.el3
xpdf-1:3.00-24.el4_8.1
xpdf-debuginfo-1:3.00-24.el4_8.1
gpdf-0:2.8.2-7.7.2.el4_8.7
gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.7
kdegraphics-7:3.3.1-18.el4_8.1
kdegraphics-7:3.5.4-17.el5_5.1
kdegraphics-debuginfo-7:3.3.1-18.el4_8.1
kdegraphics-debuginfo-7:3.5.4-17.el5_5.1
kdegraphics-devel-7:3.3.1-18.el4_8.1
kdegraphics-devel-7:3.5.4-17.el5_5.1
cups-1:1.1.17-13.3.70
cups-debuginfo-1:1.1.17-13.3.70
cups-devel-1:1.1.17-13.3.70
cups-libs-1:1.1.17-13.3.70
cups-1:1.1.22-0.rc1.9.32.el4_8.10
cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10
cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10
cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10
poppler-0:0.12.4-3.el6_0.1
poppler-debuginfo-0:0.12.4-3.el6_0.1
poppler-devel-0:0.12.4-3.el6_0.1
poppler-glib-0:0.12.4-3.el6_0.1
poppler-glib-devel-0:0.12.4-3.el6_0.1
poppler-qt-0:0.12.4-3.el6_0.1
poppler-qt-devel-0:0.12.4-3.el6_0.1
poppler-qt4-0:0.12.4-3.el6_0.1
poppler-qt4-devel-0:0.12.4-3.el6_0.1
poppler-utils-0:0.12.4-3.el6_0.1
tetex-0:3.0-33.15.el5_8.1
tetex-afm-0:3.0-33.15.el5_8.1
tetex-debuginfo-0:3.0-33.15.el5_8.1
tetex-doc-0:3.0-33.15.el5_8.1
tetex-dvips-0:3.0-33.15.el5_8.1
tetex-fonts-0:3.0-33.15.el5_8.1
tetex-latex-0:3.0-33.15.el5_8.1
tetex-xdvi-0:3.0-33.15.el5_8.1

refmap via4

bid	43845
confirm	ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.02pl5.patch http://www.openoffice.org/security/cves/CVE-2010-3702_CVE-2010-3704.html https://bugzilla.redhat.com/show_bug.cgi?id=595245
debian	DSA-2119 DSA-2135
fedora	FEDORA-2010-15857 FEDORA-2010-15911 FEDORA-2010-15981 FEDORA-2010-16662 FEDORA-2010-16705 FEDORA-2010-16744
mandriva	MDVSA-2010:228 MDVSA-2010:229 MDVSA-2010:230 MDVSA-2010:231 MDVSA-2012:144
misc	http://cgit.freedesktop.org/poppler/poppler/commit/?id=e853106b58d6b4b0467dbd6436c9bb1cfbd372cf
mlist	[oss-security] 20101004 Re: CVE requests: Poppler, Quassel, Pyfribidi, Overkill, DocUtils, FireGPG, Wireshark
secunia	42141 42357 42397 42691 43079
slackware	SSA:2010-324-01
suse	SUSE-SR:2010:022 SUSE-SR:2010:023 SUSE-SR:2010:024
ubuntu	USN-1005-1
vupen	ADV-2010-2897 ADV-2010-3097 ADV-2011-0230

Last major update

23-12-2020 - 15:01

Published

05-11-2010 - 18:00

Last modified

23-12-2020 - 15:01