QwikSec

Security Database

CVE

CWE

Training

CVE-2010-3703

Published: Nov 5, 2010

Modified: Aug 7, 2024

PUBLISHED

Description

The PostScriptFunction::PostScriptFunction function in poppler/Function.cc in the PDF parser in poppler 0.8.7 and possibly other versions up to 0.15.1, and possibly other products, allows context-dependent attackers to cause a denial of service (crash) via a PDF file that triggers an uninitialized pointer dereference.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[oss-security] 20101004 Re: CVE requests: Poppler, Quassel, Pyfribidi, Overkill, DocUtils, FireGPG, Wireshark

mailing-list

x_refsource_MLIST

FEDORA-2010-15857

vendor-advisory

x_refsource_FEDORA

vendor-advisory

x_refsource_REDHAT

third-party-advisory

x_refsource_SECUNIA

https://bugzilla.redhat.com/show_bug.cgi?id=639356

x_refsource_CONFIRM

vendor-advisory

x_refsource_MANDRIVA

SSA:2010-324-01

vendor-advisory

x_refsource_SLACKWARE

FEDORA-2010-15911

vendor-advisory

x_refsource_FEDORA

vendor-advisory

x_refsource_UBUNTU

FEDORA-2010-15981

vendor-advisory

x_refsource_FEDORA

SUSE-SR:2010:024

vendor-advisory

x_refsource_SUSE

http://cgit.freedesktop.org/poppler/poppler/commit/?id=bf2055088a3a2d3bb3d3c37d464954ec1a25771f

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.