Vulnerability Details : CVE-2005-3624
Potential exploit
The CCITTFaxStream::CCITTFaxStream function in Stream.cc for xpdf, gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others allows attackers to corrupt the heap via negative or large integers in a CCITTFaxDecode stream, which lead to integer overflows and integer underflows.
Products affected by CVE-2005-3624
- cpe:2.3:a:sgi:propack:3.0:sp6:*:*:*:*:*:*
- cpe:2.3:o:sco:openserver:5.0.7:*:*:*:*:*:*:*
- cpe:2.3:o:sco:openserver:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.0:*:*:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.0:*:ppc:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.0:*:s-390:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.0:*:mips:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.0:*:mipsel:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.0:*:alpha:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.0:*:arm:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.0:*:hppa:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.0:*:sparc:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.0:*:ia-64:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.0:*:m68k:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.0:*:ia-32:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.1:*:arm:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.1:*:hppa:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.1:*:ia-32:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.1:*:ia-64:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.1:*:alpha:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.1:*:mips:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.1:*:ppc:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.1:*:*:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.1:*:amd64:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.1:*:m68k:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.1:*:mipsel:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.1:*:s-390:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.1:*:sparc:*:*:*:*:*
- cpe:2.3:o:mandrakesoft:mandrake_linux:10.1:*:*:*:*:*:*:*
- cpe:2.3:o:mandrakesoft:mandrake_linux:10.2:*:*:*:*:*:*:*
- cpe:2.3:o:mandrakesoft:mandrake_linux:10.2:*:x86-64:*:*:*:*:*
- cpe:2.3:o:mandrakesoft:mandrake_linux:2006:*:*:*:*:*:*:*
- cpe:2.3:o:mandrakesoft:mandrake_linux:10.1:*:x86-64:*:*:*:*:*
- cpe:2.3:o:mandrakesoft:mandrake_linux:2006:*:x86-64:*:*:*:*:*
- cpe:2.3:o:mandrakesoft:mandrake_linux_corporate_server:2.1:*:*:*:*:*:*:*
- cpe:2.3:o:mandrakesoft:mandrake_linux_corporate_server:2.1:*:x86_64:*:*:*:*:*
- cpe:2.3:o:mandrakesoft:mandrake_linux_corporate_server:3.0:*:*:*:*:*:*:*
- cpe:2.3:o:mandrakesoft:mandrake_linux_corporate_server:3.0:*:x86_64:*:*:*:*:*
- cpe:2.3:o:redhat:linux:7.3:*:i386:*:*:*:*:*
- cpe:2.3:o:redhat:linux:9.0:*:i386:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:4.0:*:advanced_server:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:4.0:*:enterprise_server:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:4.0:*:workstation:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:2.1:*:advanced_server:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:2.1:*:workstation:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:2.1:*:workstation_ia64:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:2.1:*:advanced_server_ia64:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:2.1:*:enterprise_server:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:2.1:*:enterprise_server_ia64:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:3.0:*:enterprise_server:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:3.0:*:workstation_server:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:3.0:*:advanced_server:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_desktop:4.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_desktop:3.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:linux_advanced_workstation:2.1:*:ia64:*:*:*:*:*
- cpe:2.3:o:redhat:linux_advanced_workstation:2.1:*:itanium:*:*:*:*:*
- cpe:2.3:o:redhat:fedora_core:core_1.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:fedora_core:core_2.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:fedora_core:core_3.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:fedora_core:core_4.0:*:*:*:*:*:*:*
- cpe:2.3:o:slackware:slackware_linux:9.0:*:*:*:*:*:*:*
- cpe:2.3:o:slackware:slackware_linux:9.1:*:*:*:*:*:*:*
- cpe:2.3:o:slackware:slackware_linux:10.0:*:*:*:*:*:*:*
- cpe:2.3:o:slackware:slackware_linux:10.1:*:*:*:*:*:*:*
- cpe:2.3:o:slackware:slackware_linux:10.2:*:*:*:*:*:*:*
- cpe:2.3:o:ubuntu:ubuntu_linux:4.1:*:ppc:*:*:*:*:*
- cpe:2.3:o:ubuntu:ubuntu_linux:4.1:*:ia64:*:*:*:*:*
- cpe:2.3:o:ubuntu:ubuntu_linux:5.04:*:amd64:*:*:*:*:*
- cpe:2.3:o:ubuntu:ubuntu_linux:5.04:*:i386:*:*:*:*:*
- cpe:2.3:o:ubuntu:ubuntu_linux:5.04:*:powerpc:*:*:*:*:*
- cpe:2.3:o:ubuntu:ubuntu_linux:5.10:*:amd64:*:*:*:*:*
- cpe:2.3:o:ubuntu:ubuntu_linux:5.10:*:i386:*:*:*:*:*
- cpe:2.3:o:ubuntu:ubuntu_linux:5.10:*:powerpc:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux:9.0:*:x86_64:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux:9.0:*:enterprise_server:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux:9.0:*:s_390:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux:1.0:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux:9.2:*:x86_64:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux:9.1:*:x86_64:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux:9.0:*:personal:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux:9.2:*:personal:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux:9.1:*:personal:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux:9.3:*:x86_64:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux:9.3:*:personal:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux:9.3:*:professional:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux:9.0:*:professional:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux:9.2:*:professional:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux:10.0:*:oss:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux:9.1:*:professional:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux:10.0:*:professional:*:*:*:*:*
- cpe:2.3:a:kde:koffice:1.4:*:*:*:*:*:*:*
- cpe:2.3:a:kde:koffice:1.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:kde:koffice:1.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kpdf:3.2:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kpdf:3.4.3:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kdegraphics:3.2:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kdegraphics:3.4.3:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kword:1.4.2:*:*:*:*:*:*:*
- cpe:2.3:o:turbolinux:turbolinux:fuji:*:*:*:*:*:*:*
- cpe:2.3:o:turbolinux:turbolinux:10:*:*:*:*:*:*:*
- cpe:2.3:o:turbolinux:turbolinux_server:8.0:*:*:*:*:*:*:*
- cpe:2.3:o:turbolinux:turbolinux_server:10.0:*:*:*:*:*:*:*
- cpe:2.3:o:turbolinux:turbolinux_server:10.0_x86:*:*:*:*:*:*:*
- cpe:2.3:o:turbolinux:turbolinux_workstation:8.0:*:*:*:*:*:*:*
- cpe:2.3:o:turbolinux:turbolinux_desktop:10.0:*:*:*:*:*:*:*
- cpe:2.3:o:turbolinux:turbolinux_home:*:*:*:*:*:*:*:*
- cpe:2.3:o:turbolinux:turbolinux_appliance_server:1.0_hosting_edition:*:*:*:*:*:*:*
- cpe:2.3:o:turbolinux:turbolinux_appliance_server:1.0_workgroup_edition:*:*:*:*:*:*:*
- cpe:2.3:o:turbolinux:turbolinux_multimedia:*:*:*:*:*:*:*:*
- cpe:2.3:o:turbolinux:turbolinux_personal:*:*:*:*:*:*:*:*
- cpe:2.3:o:conectiva:linux:10.0:*:*:*:*:*:*:*
- cpe:2.3:o:trustix:secure_linux:2.0:*:*:*:*:*:*:*
- cpe:2.3:o:trustix:secure_linux:2.2:*:*:*:*:*:*:*
- cpe:2.3:o:trustix:secure_linux:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:xpdf:xpdf:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:easy_software_products:cups:1.1.22_rc1:*:*:*:*:*:*:*
- cpe:2.3:a:easy_software_products:cups:1.1.22:*:*:*:*:*:*:*
- cpe:2.3:a:easy_software_products:cups:1.1.23:*:*:*:*:*:*:*
- cpe:2.3:a:easy_software_products:cups:1.1.23_rc1:*:*:*:*:*:*:*
- cpe:2.3:a:tetex:tetex:1.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:tetex:tetex:2.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:tetex:tetex:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:tetex:tetex:2.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:tetex:tetex:3.0:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:linux:*:*:*:*:*:*:*:*
- cpe:2.3:a:poppler:poppler:0.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:libextractor:libextractor:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2005-3624
2.80%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 90 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2005-3624
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:N/I:P/A:N |
10.0
|
2.9
|
NIST |
CWE ids for CVE-2005-3624
-
Assigned by: nvd@nist.gov (Primary)
Vendor statements for CVE-2005-3624
-
Red Hat 2007-03-14Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.
References for CVE-2005-3624
-
ftp://patches.sgi.com/support/free/security/advisories/20060101-01-U
-
http://www.securityfocus.com/archive/1/427053/100/0/threaded
-
http://www.vupen.com/english/advisories/2007/2280
Site en construction
-
http://www.mandriva.com/security/advisories?name=MDKSA-2006:008
Mandriva
-
http://www.mandriva.com/security/advisories?name=MDKSA-2006:004
Mandriva
-
http://www.mandriva.com/security/advisories?name=MDKSA-2006:003
Mandriva
-
http://scary.beasts.org/security/CESA-2005-003.txt
Exploit;Vendor Advisory
-
http://www.debian.org/security/2006/dsa-950
[SECURITY] [DSA 950-1] New CUPS packages fix arbitrary code executionPatch;Vendor Advisory
-
http://www.debian.org/security/2006/dsa-962
[SECURITY] [DSA 962-1] New pdftohtml packages fix arbitrary code executionPatch;Vendor Advisory
-
http://www.mandriva.com/security/advisories?name=MDKSA-2006:010
Mandriva
-
ftp://patches.sgi.com/support/free/security/advisories/20060201-01-U
-
http://www.debian.org/security/2006/dsa-961
[SECURITY] [DSA 961-1] New pdfkit.framework packages fix arbitrary code executionPatch;Vendor Advisory
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/24022
Xpdf CCITTFaxStream::CCITTFaxStream() buffer overflow CVE-2005-3624 Vulnerability Report
-
http://www.gentoo.org/security/en/glsa/glsa-200601-17.xml
Xpdf, Poppler, GPdf, libextractor, pdftohtml: Heap overflows (GLSA 200601-17) — Gentoo securityPatch;Vendor Advisory
-
http://www.debian.org/security/2005/dsa-937
[SECURITY] [DSA 937-1] New tetex-bin packages fix arbitrary code execution
-
http://www.mandriva.com/security/advisories?name=MDKSA-2006:011
Mandriva
-
http://www.mandriva.com/security/advisories?name=MDKSA-2006:005
Mandriva
-
http://www.debian.org/security/2005/dsa-940
[SECURITY] [DSA 940-1] New gpdf packages fix arbitrary code execution
-
http://www.redhat.com/support/errata/RHSA-2006-0160.html
SupportPatch;Vendor Advisory
-
ftp://patches.sgi.com/support/free/security/advisories/20051201-01-U
-
http://www.securityfocus.com/bid/16143
Patch
-
http://www.debian.org/security/2006/dsa-936
[SECURITY] [DSA 936-1] New libextractor packages fix arbitrary code executionPatch;Vendor Advisory
-
http://lists.suse.com/archive/suse-security-announce/2006-Jan/0001.html
Object not found!Patch
-
http://www.redhat.com/archives/fedora-announce-list/2006-January/msg00031.html
[SECURITY] Fedora Core 4 Update: poppler-0.4.4-1.1
-
https://usn.ubuntu.com/236-1/
404: Page not found | Ubuntu
-
http://www.securityfocus.com/archive/1/427990/100/0/threaded
-
http://www.trustix.org/errata/2006/0002/
Trustix | Empowering Trust and Security in the Digital Age
-
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102972-1
-
http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.472683
The Slackware Linux Project: Slackware Security Advisories
-
http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.474747
The Slackware Linux Project: Slackware Security Advisories
-
http://www.mandriva.com/security/advisories?name=MDKSA-2006:012
Mandriva
-
http://www.debian.org/security/2005/dsa-931
[SECURITY] [DSA 931-1] New xpdf packages fix arbitrary code execution
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9437
404 Not Found
-
http://www.vupen.com/english/advisories/2006/0047
Site en construction
-
http://www.debian.org/security/2005/dsa-932
[SECURITY] [DSA 932-1] New kpdf packages fix arbitrary code execution
-
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.15/SCOSA-2006.15.txt
-
http://www.kde.org/info/security/advisory-20051207-2.txt
Patch;Vendor Advisory
-
http://rhn.redhat.com/errata/RHSA-2006-0177.html
RHSA-2006:0177 - Security Advisory - Red Hat Customer PortalPatch;Vendor Advisory
-
http://www.mandriva.com/security/advisories?name=MDKSA-2006:006
Mandriva
-
http://www.redhat.com/support/errata/RHSA-2006-0163.html
Support
-
http://www.gentoo.org/security/en/glsa/glsa-200601-02.xml
KPdf, KWord: Multiple overflows in included Xpdf code (GLSA 200601-02) — Gentoo securityPatch;Vendor Advisory
-
http://www.debian.org/security/2005/dsa-938
[SECURITY] [DSA 938-1] New koffice packages fix arbitrary code execution
-
http://www.redhat.com/archives/fedora-announce-list/2006-January/msg00030.html
[SECURITY] Fedora Core 3 Update: gpdf-2.8.2-7.2
Jump to