| Max CVSS | 6.8 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2009-0147 | 4.3 |
Multiple integer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allow remote attackers to cause a denial of service (crash) via a crafted PDF file, related to (1) JBIG2Stream::readSymbolDictSeg,
|
06-03-2019 - 16:30 | 23-04-2009 - 17:30 | |
| CVE-2009-0166 | 4.3 |
The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allows remote attackers to cause a denial of service (crash) via a crafted PDF file that triggers a free of uninitialized memory.
|
06-03-2019 - 16:30 | 23-04-2009 - 17:30 | |
| CVE-2009-0146 | 4.3 |
Multiple buffer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allow remote attackers to cause a denial of service (crash) via a crafted PDF file, related to (1) JBIG2SymbolDict::setBitmap and (
|
06-03-2019 - 16:30 | 23-04-2009 - 17:30 | |
| CVE-2009-0163 | 6.8 |
Integer overflow in the TIFF image decoding routines in CUPS 1.3.9 and earlier allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via a crafted TIFF image, which is not properly handled by the (1)
|
11-10-2018 - 21:00 | 23-04-2009 - 17:30 | |
| CVE-2009-0164 | 6.4 |
The web interface for CUPS before 1.3.10 does not validate the HTTP Host header in a client request, which makes it easier for remote attackers to conduct DNS rebinding attacks.
|
11-10-2018 - 21:00 | 24-04-2009 - 15:30 |