CVE-2008-2950
новости
/
статьи
/
форум
/
программы
/
реклама
/
поиск
/
эксплоиты
[RU]
switch to
English
Version
CVE
CVE-2008-2950
Статус
Candidate
Описание
The Page destructor in Page.cc in libpoppler in Poppler 0.8.4 and earlier deletes a pageWidgets object even if it is not initialized by a Page constructor, which allows remote attackers to execute arbitrary code via a crafted PDF document.
Phase
Assigned (30.06.2008)
NVD:
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-2950
References
BID :
30107
BUGTRAQ :
20080707 [oCERT-2008-007] libpoppler uninitialized pointer
BUGTRAQ :
20080709 rPSA-2008-0223-1 poppler
CONFIRM :
http://wiki.rpath.com/Advisories:rPSA-2008-0223
FEDORA :
FEDORA-2008-7104
GENTOO :
GLSA-200807-04
MANDRIVA :
MDVSA-2008:146
MILW0RM :
6032
MISC :
http://www.ocert.org/advisories/ocert-2008-007.html
SECTRACK :
1020435
SECUNIA :
30963
SECUNIA :
31002
SECUNIA :
31267
SECUNIA :
31405
SREASON :
3977
SUSE :
SUSE-SR:2008:015
UBUNTU :
USN-631-1
VUPEN :
ADV-2008-2024
XF :
poppler-page-destructor-code-execution(43619)
SecurityVulns:
Неинициализированный указатель в библиотеке libpoppler
DoS против библиотеки poppler
О сайте
|
Условия использования
©
SecurityVulns
,
3APA3A
, Владимир Дубровин
Нижний Новгород
Enter your search terms
Web
securityvulns.ru
Submit search form
test server
