Vulnerability Details : CVE-2006-0301
Heap-based buffer overflow in Splash.cc in xpdf, as used in other products such as (1) poppler, (2) kdegraphics, (3) gpdf, (4) pdfkit.framework, and others, allows attackers to cause a denial of service and possibly execute arbitrary code via crafted splash images that produce certain values that exceed the width or height of the associated bitmap.
Vulnerability category: OverflowExecute codeDenial of service
Products affected by CVE-2006-0301
- cpe:2.3:a:xpdf:xpdf:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2006-0301
3.08%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 86 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2006-0301
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
CWE ids for CVE-2006-0301
-
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.Assigned by: nvd@nist.gov (Primary)
References for CVE-2006-0301
-
http://www.debian.org/security/2006/dsa-971
[SECURITY] [DSA 971-1] New xpdf packages fix denial of servicePatch;Vendor Advisory
-
http://www.vupen.com/english/advisories/2006/0389
Site en constructionVendor Advisory
-
http://www.securityfocus.com/archive/1/423899/100/0/threaded
Patch;Vendor Advisory
-
http://rhn.redhat.com/errata/RHSA-2006-0206.html
RHSA-2006:0206 - Security Advisory - Red Hat Customer PortalPatch;Vendor Advisory
-
http://securityreason.com/securityalert/470
Heap overflows in included Xpdf code - CXSecurity.com
-
http://www.mandriva.com/security/advisories?name=MDKSA-2006:031
Mandriva
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10850
404 Not Found
-
http://securitytracker.com/id?1015576
Access DeniedPatch
-
https://bugzilla.novell.com/show_bug.cgi?id=141242
Access Denied
-
http://www.gentoo.org/security/en/glsa/glsa-200602-04.xml
Xpdf, Poppler: Heap overflow (GLSA 200602-04) — Gentoo securityPatch;Vendor Advisory
-
http://www.redhat.com/archives/fedora-announce-list/2006-February/msg00039.html
[SECURITY] Fedora Core 4 Update: poppler-0.4.5-1.1Patch;Vendor Advisory
-
http://www.vupen.com/english/advisories/2006/0422
Site en constructionVendor Advisory
-
http://www.redhat.com/support/errata/RHSA-2006-0201.html
SupportPatch;Vendor Advisory
-
http://www.mandriva.com/security/advisories?name=MDKSA-2006:032
Mandriva
-
http://www.securityfocus.com/archive/1/427990/100/0/threaded
-
http://www.gentoo.org/security/en/glsa/glsa-200602-12.xml
GPdf: heap overflows in included Xpdf code (GLSA 200602-12) — Gentoo securityPatch;Vendor Advisory
-
http://www.debian.org/security/2006/dsa-972
[SECURITY] [DSA 972-1] New pdfkit.framework packages fix denial of servicePatch;Vendor Advisory
-
http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.472683
The Slackware Linux Project: Slackware Security AdvisoriesPatch
-
http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.474747
The Slackware Linux Project: Slackware Security AdvisoriesPatch
-
http://www.debian.org/security/2006/dsa-974
[SECURITY] [DSA 974-1] New gpdf packages fix denial of servicePatch;Vendor Advisory
-
http://www.ubuntu.com/usn/usn-249-1
USN-249-1: xpdf/poppler/kpdf vulnerabilities | Ubuntu security notices | UbuntuPatch
-
http://www.mandriva.com/security/advisories?name=MDKSA-2006:030
Mandriva
-
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.15/SCOSA-2006.15.txt
Patch;Vendor Advisory
-
http://www.kde.org/info/security/advisory-20060202-1.txt
Patch;Vendor Advisory
-
http://www.gentoo.org/security/en/glsa/glsa-200602-05.xml
KPdf: Heap based overflow (GLSA 200602-05) — Gentoo securityPatch;Vendor Advisory
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/24391
Xpdf splash/splash.cc buffer overflow CVE-2006-0301 Vulnerability Report
-
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=179046
179046 – CVE-2006-0301 PDF splash handling heap overflow
Jump to