← Retour aux CVEs
CVE-2009-3607
N/ADescription
Integer overflow in the create_surface_from_thumbnail_data function in glib/poppler-page.cc in Poppler 0.x allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information.
Details CVE
Score CVSS v3.1N/A
Publie10/21/2009
Derniere modification4/23/2026
Sourcenvd
Observations honeypot0
Produits affectes
poppler:poppler
Faiblesses (CWE)
CWE-189
References
http://cgit.freedesktop.org/poppler/poppler/commit/?id=c839b706(secalert@redhat.com)
http://secunia.com/advisories/37054(secalert@redhat.com)
http://secunia.com/advisories/37114(secalert@redhat.com)
http://secunia.com/advisories/37159(secalert@redhat.com)
http://sunsolve.sun.com/search/document.do?assetkey=1-66-274030-1(secalert@redhat.com)
http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021706.1-1(secalert@redhat.com)
http://www.debian.org/security/2009/dsa-1941(secalert@redhat.com)
http://www.mandriva.com/security/advisories?name=MDVSA-2011:175(secalert@redhat.com)
http://www.openwall.com/lists/oss-security/2009/12/01/1(secalert@redhat.com)
http://www.openwall.com/lists/oss-security/2009/12/01/5(secalert@redhat.com)
http://www.openwall.com/lists/oss-security/2009/12/01/6(secalert@redhat.com)
http://www.securityfocus.com/bid/36718(secalert@redhat.com)
http://www.ubuntu.com/usn/USN-850-1(secalert@redhat.com)
http://www.ubuntu.com/usn/USN-850-3(secalert@redhat.com)
http://www.vupen.com/english/advisories/2009/2925(secalert@redhat.com)
https://bugzilla.redhat.com/show_bug.cgi?id=526924(secalert@redhat.com)
https://exchange.xforce.ibmcloud.com/vulnerabilities/53801(secalert@redhat.com)
https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00750.html(secalert@redhat.com)
https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00784.html(secalert@redhat.com)
http://cgit.freedesktop.org/poppler/poppler/commit/?id=c839b706(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/37054(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/37114(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/37159(af854a3a-2127-422b-91ae-364da2661108)
http://sunsolve.sun.com/search/document.do?assetkey=1-66-274030-1(af854a3a-2127-422b-91ae-364da2661108)
http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021706.1-1(af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2009/dsa-1941(af854a3a-2127-422b-91ae-364da2661108)
http://www.mandriva.com/security/advisories?name=MDVSA-2011:175(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2009/12/01/1(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2009/12/01/5(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2009/12/01/6(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/36718(af854a3a-2127-422b-91ae-364da2661108)
http://www.ubuntu.com/usn/USN-850-1(af854a3a-2127-422b-91ae-364da2661108)
http://www.ubuntu.com/usn/USN-850-3(af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2009/2925(af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.redhat.com/show_bug.cgi?id=526924(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/53801(af854a3a-2127-422b-91ae-364da2661108)
https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00750.html(af854a3a-2127-422b-91ae-364da2661108)
https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00784.html(af854a3a-2127-422b-91ae-364da2661108)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.