New Search

Integer overflow in the StreamPredictor::StreamPredictor function in xpdf 3.02 as used in (1) poppler before 0.5.91 (2) gpdf before 2.8.2 (3) kpdf (4) kdegraphics (5) CUPS (6) PDFedit and other products might allow remote attackers to execute arbitrary code via a crafted PDF file that triggers a stack-based buffer overflow in the StreamPredictor::getNextLine function.

oval:org.mitre.oval:def:11149

Integer overflow in the StreamPredictor::StreamPredictor function in xpdf 3.02 as used in (1) poppler before 0.5.91 (2) gpdf before 2.8.2 (3) kpdf (4) kdegraphics (5) CUPS (6) PDFedit and other products might allow remote attackers to execute arbitrary code via a crafted PDF file that triggers a stack-based buffer overflow in the StreamPredictor::getNextLine function.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • CentOS Linux 4
  • Red Hat Enterprise Linux 4
  • CentOS Linux 5
  • CentOS Linux 3
  • Red Hat Enterprise Linux 5
  • Oracle Linux 5
  • Red Hat Enterprise Linux 3
  • Oracle Linux 4
Class:
vulnerability
Reference(s):
  • CVE-2007-3387
Product(s):