CVE-2010-3702

HIGH

Description

The Gfx::getPos function in the PDF parser in xpdf before 3.02pl5, poppler 0.8.7 and possibly other versions up to 0.15.1, CUPS, kdegraphics, and possibly other products allows context-dependent attackers to cause a denial of service (crash) via unknown vectors that trigger an uninitialized pointer dereference.

References

ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.02pl5.patch

http://cgit.freedesktop.org/poppler/poppler/commit/?id=e853106b58d6b4b0467dbd6436c9bb1cfbd372cf

http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050268.html

http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050285.html

http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050390.html

http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049392.html

http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049523.html

http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049545.html

http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00006.html

http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00000.html

http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html

http://rhn.redhat.com/errata/RHSA-2012-1201.html

http://secunia.com/advisories/42141

http://secunia.com/advisories/42357

http://secunia.com/advisories/42397

http://secunia.com/advisories/42691

http://secunia.com/advisories/43079

http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.571720

http://www.debian.org/security/2010/dsa-2119

http://www.debian.org/security/2010/dsa-2135

http://www.mandriva.com/security/advisories?name=MDVSA-2010:228

http://www.mandriva.com/security/advisories?name=MDVSA-2010:229

http://www.mandriva.com/security/advisories?name=MDVSA-2010:230

http://www.mandriva.com/security/advisories?name=MDVSA-2010:231

http://www.mandriva.com/security/advisories?name=MDVSA-2012:144

http://www.openoffice.org/security/cves/CVE-2010-3702_CVE-2010-3704.html

http://www.openwall.com/lists/oss-security/2010/10/04/6

http://www.redhat.com/support/errata/RHSA-2010-0749.html

http://www.redhat.com/support/errata/RHSA-2010-0750.html

http://www.redhat.com/support/errata/RHSA-2010-0751.html

http://www.redhat.com/support/errata/RHSA-2010-0752.html

http://www.redhat.com/support/errata/RHSA-2010-0753.html

http://www.redhat.com/support/errata/RHSA-2010-0754.html

http://www.redhat.com/support/errata/RHSA-2010-0755.html

http://www.redhat.com/support/errata/RHSA-2010-0859.html

http://www.securityfocus.com/bid/43845

http://www.ubuntu.com/usn/USN-1005-1

http://www.vupen.com/english/advisories/2010/2897

http://www.vupen.com/english/advisories/2010/3097

http://www.vupen.com/english/advisories/2011/0230

https://bugzilla.redhat.com/show_bug.cgi?id=595245

Details

Source: MITRE

Published: 2010-11-05

Updated: 2020-12-23

Type: CWE-476

Risk Information

CVSS v2.0

Base Score: 7.5

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 10

Severity: HIGH

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:apple:cups:*:*:*:*:*:*:*:* versions up to 1.3.11 (inclusive)

cpe:2.3:a:freedesktop:poppler:*:*:*:*:*:*:*:* versions from 0.8.7 to 0.15.1 (inclusive)

cpe:2.3:a:xpdfreader:xpdf:*:*:*:*:*:*:*:* versions up to 3.01 (inclusive)

cpe:2.3:a:xpdfreader:xpdf:3.02:-:*:*:*:*:*:*

cpe:2.3:a:xpdfreader:xpdf:3.02:pl1:*:*:*:*:*:*

cpe:2.3:a:xpdfreader:xpdf:3.02:pl2:*:*:*:*:*:*

cpe:2.3:a:xpdfreader:xpdf:3.02:pl3:*:*:*:*:*:*

cpe:2.3:a:xpdfreader:xpdf:3.02:pl4:*:*:*:*:*:*

Configuration 2

OR

cpe:2.3:o:fedoraproject:fedora:12:*:*:*:*:*:*:*

cpe:2.3:o:fedoraproject:fedora:13:*:*:*:*:*:*:*

cpe:2.3:o:fedoraproject:fedora:14:*:*:*:*:*:*:*

Configuration 3

OR

cpe:2.3:o:opensuse:opensuse:11.1:*:*:*:*:*:*:*

cpe:2.3:o:opensuse:opensuse:11.2:*:*:*:*:*:*:*

cpe:2.3:o:opensuse:opensuse:11.3:*:*:*:*:*:*:*

cpe:2.3:o:suse:linux_enterprise_server:9:*:*:*:*:*:*:*

cpe:2.3:o:suse:linux_enterprise_server:10:sp3:*:*:-:*:*:*

cpe:2.3:o:suse:linux_enterprise_server:11:-:*:*:*:*:*:*

cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:*:*:*:*

Configuration 4

OR

cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*

Configuration 5

OR

cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*

Configuration 6

OR

cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:9.04:*:*:*:*:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*

Tenable Plugins

View all (68 total)

IDNameProductFamilySeverity
102905OracleVM 3.3 / 3.4 : poppler (OVMSA-2017-0147)NessusOracleVM Local Security Checks
medium
75687openSUSE Security Update : OpenOffice_org (openSUSE-SU-2011:0336-1)NessusSuSE Local Security Checks
high
75606openSUSE Security Update : libpoppler-devel (openSUSE-SU-2010:0976-1)NessusSuSE Local Security Checks
medium
72549GLSA-201402-17 : Xpdf: User-assisted execution of arbitrary codeNessusGentoo Local Security Checks
high
70309GLSA-201310-03 : Poppler: Multiple vulnerabilitiesNessusGentoo Local Security Checks
critical
68602Oracle Linux 5 : tetex (ELSA-2012-1201)NessusOracle Linux Local Security Checks
high
68137Oracle Linux 6 : poppler (ELSA-2010-0859)NessusOracle Linux Local Security Checks
medium
68116Oracle Linux 4 : cups (ELSA-2010-0755)NessusOracle Linux Local Security Checks
medium
68115Oracle Linux 3 : cups (ELSA-2010-0754)NessusOracle Linux Local Security Checks
medium
68114Oracle Linux 4 : kdegraphics (ELSA-2010-0753)NessusOracle Linux Local Security Checks
medium
68113Oracle Linux 4 : gpdf (ELSA-2010-0752)NessusOracle Linux Local Security Checks
medium
68112Oracle Linux 4 : xpdf (ELSA-2010-0751)NessusOracle Linux Local Security Checks
medium
68111Oracle Linux 3 : xpdf (ELSA-2010-0750)NessusOracle Linux Local Security Checks
medium
68110Oracle Linux 5 : poppler (ELSA-2010-0749)NessusOracle Linux Local Security Checks
medium
61657Scientific Linux Security Update : tetex on SL5.x i386/x86_64 (20120823)NessusScientific Linux Local Security Checks
high
61653RHEL 5 : tetex (RHSA-2012:1201)NessusRed Hat Local Security Checks
high
61651CentOS 5 : tetex (CESA-2012:1201)NessusCentOS Local Security Checks
high
60896Scientific Linux Security Update : poppler on SL6.x i386/x86_64NessusScientific Linux Local Security Checks
medium
60867Scientific Linux Security Update : xpdf on SL3.x, SL4.x i386/x86_64NessusScientific Linux Local Security Checks
medium
60866Scientific Linux Security Update : poppler on SL5.x i386/x86_64NessusScientific Linux Local Security Checks
medium
60865Scientific Linux Security Update : kdegraphics on SL4.x, SL5.x i386/x86_64NessusScientific Linux Local Security Checks
medium
60864Scientific Linux Security Update : gpdf on SL4.x i386/x86_64NessusScientific Linux Local Security Checks
medium
60863Scientific Linux Security Update : cups on SL3.x, SL4.x i386/x86_64NessusScientific Linux Local Security Checks
medium
53784openSUSE Security Update : OpenOffice_org (openSUSE-SU-2011:0337-1)NessusSuSE Local Security Checks
high
53755openSUSE Security Update : libpoppler-devel (openSUSE-SU-2010:0976-1)NessusSuSE Local Security Checks
medium
53690openSUSE Security Update : xpdf (openSUSE-SU-2010:1091-1)NessusSuSE Local Security Checks
medium
53677openSUSE Security Update : libpoppler-devel (openSUSE-SU-2010:0976-1)NessusSuSE Local Security Checks
medium
52738SuSE 10 Security Update : Libreoffice (ZYPP Patch Number 7365)NessusSuSE Local Security Checks
high
52735SuSE 11.1 Security Update : Libreoffice (SAT Patch Number 4082)NessusSuSE Local Security Checks
high
5745OpenOffice < 3.3 Multiple VulnerabilitiesNessus Network MonitorGeneric
high
51773Oracle OpenOffice.org < 3.3 Multiple VulnerabilitiesNessusWindows
high
51637SuSE 11.1 Security Update : xpdf (SAT Patch Number 3377)NessusSuSE Local Security Checks
medium
51622SuSE 11.1 Security Update : libpoppler (SAT Patch Number 3338)NessusSuSE Local Security Checks
medium
51397Debian DSA-2135-1 : xpdf - several vulnerabilitiesNessusDebian Local Security Checks
medium
51365SuSE 10 Security Update : xpdf (ZYPP Patch Number 7190)NessusSuSE Local Security Checks
medium
51113SuSE 10 Security Update : kdegraphics (ZYPP Patch Number 7235)NessusSuSE Local Security Checks
high
50984SuSE 10 Security Update : CUPS (ZYPP Patch Number 7244)NessusSuSE Local Security Checks
medium
50982SuSE9 Security Update : CUPS (YOU Patch Number 12665)NessusSuSE Local Security Checks
medium
50942SuSE 11 Security Update : libpoppler (SAT Patch Number 3337)NessusSuSE Local Security Checks
medium
50821SuSE 10 Security Update : libpoppler (ZYPP Patch Number 7192)NessusSuSE Local Security Checks
medium
50661Slackware 12.0 / 12.1 / 12.2 / 13.0 / 13.1 / current : poppler (SSA:2010-324-02)NessusSlackware Local Security Checks
medium
50660Slackware 10.0 / 10.1 / 10.2 / 11.0 / 12.0 / 12.1 / 12.2 / 13.0 / 13.1 / 9.1 / current : xpdf (SSA:2010-324-01)NessusSlackware Local Security Checks
medium
50631RHEL 6 : poppler (RHSA-2010:0859)NessusRed Hat Local Security Checks
medium
50583Mandriva Linux Security Advisory : poppler (MDVSA-2010:231)NessusMandriva Local Security Checks
medium
50582Mandriva Linux Security Advisory : poppler (MDVSA-2010:230)NessusMandriva Local Security Checks
medium
50581Mandriva Linux Security Advisory : xpdf (MDVSA-2010:228)NessusMandriva Local Security Checks
medium
50483Fedora 14 : xpdf-3.02-16.fc14 (2010-16744)NessusFedora Local Security Checks
medium
50480Fedora 12 : xpdf-3.02-16.fc12 (2010-16705)NessusFedora Local Security Checks
medium
50479Fedora 13 : xpdf-3.02-16.fc13 (2010-16662)NessusFedora Local Security Checks
medium
50045Ubuntu 6.06 LTS / 8.04 LTS / 9.04 / 9.10 / 10.04 LTS / 10.10 : poppler vulnerabilities (USN-1005-1)NessusUbuntu Local Security Checks
medium
50033Fedora 12 : poppler-0.12.4-5.fc12 (2010-15981)NessusFedora Local Security Checks
medium
50027Fedora 13 : poppler-0.12.4-6.fc13 (2010-15911)NessusFedora Local Security Checks
medium
50005Fedora 14 : poppler-0.14.4-1.fc14 (2010-15857)NessusFedora Local Security Checks
medium
49965Debian DSA-2119-1 : poppler - several vulnerabilitiesNessusDebian Local Security Checks
medium
49936CentOS 5 : poppler (CESA-2010:0749)NessusCentOS Local Security Checks
medium
49814CentOS 4 : cups (CESA-2010:0755)NessusCentOS Local Security Checks
medium
49813CentOS 3 : cups (CESA-2010:0754)NessusCentOS Local Security Checks
medium
49812CentOS 4 / 5 : kdegraphics (CESA-2010:0753)NessusCentOS Local Security Checks
medium
49811CentOS 4 : gpdf (CESA-2010:0752)NessusCentOS Local Security Checks
medium
49810CentOS 4 : xpdf (CESA-2010:0751)NessusCentOS Local Security Checks
medium
49809CentOS 3 : xpdf (CESA-2010:0750)NessusCentOS Local Security Checks
medium
49802RHEL 4 : cups (RHSA-2010:0755)NessusRed Hat Local Security Checks
medium
49801RHEL 3 : cups (RHSA-2010:0754)NessusRed Hat Local Security Checks
medium
49800RHEL 4 / 5 : kdegraphics (RHSA-2010:0753)NessusRed Hat Local Security Checks
medium
49799RHEL 4 : gpdf (RHSA-2010:0752)NessusRed Hat Local Security Checks
medium
49798RHEL 4 : xpdf (RHSA-2010:0751)NessusRed Hat Local Security Checks
medium
49797RHEL 3 : xpdf (RHSA-2010:0750)NessusRed Hat Local Security Checks
medium
49796RHEL 5 : poppler (RHSA-2010:0749)NessusRed Hat Local Security Checks
medium