New Search

Heap-based buffer overflow in the StreamPredictor function in Xpdf 3.01 as used in products such as (1) Poppler (2) teTeX (3) KDE kpdf and (4) pdftohtml (5) KOffice KWord (6) CUPS and (7) libextractor allows remote attackers to execute arbitrary code via a PDF file with an out-of-range numComps (number of components) field.

oval:org.mitre.oval:def:10914

Heap-based buffer overflow in the StreamPredictor function in Xpdf 3.01 as used in products such as (1) Poppler (2) teTeX (3) KDE kpdf and (4) pdftohtml (5) KOffice KWord (6) CUPS and (7) libextractor allows remote attackers to execute arbitrary code via a PDF file with an out-of-range numComps (number of components) field.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • CentOS Linux 4
  • Oracle Linux 4
  • CentOS Linux 3
  • Red Hat Enterprise Linux 3
  • Red Hat Enterprise Linux 4
Class:
vulnerability
Reference(s):
  • CVE-2005-3192
Product(s):