CVE-2005-2097 - OpenCVE

xpdf and kpdf do not properly validate the "loca" table in PDF files, which allows local users to cause a denial of service (disk consumption and hang) via a PDF file with a "broken" loca table, which causes a large temporary file to be created when xpdf attempts to reconstruct the information.

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

AV:L/AC:L/Au:N/C:N/I:N/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Xpdf	Xpdf
Kde	Kpdf

Configuration 1 [-]

OR	cpe:2.3:a:kde:kpdf::::::::
	cpe:2.3:a:xpdf:xpdf:3.0:::::::*
	cpe:2.3:a:xpdf:xpdf:3.0_pl2:::::::*
	cpe:2.3:a:xpdf:xpdf:3.0_pl3:::::::*

References

Link	Resource
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.42/SCOSA-2005.42.txt
http://secunia.com/advisories/17277	Vendor Advisory
http://secunia.com/advisories/18398	Vendor Advisory
http://secunia.com/advisories/18407	Vendor Advisory
http://secunia.com/advisories/21339
http://secunia.com/advisories/25729
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102972-1
http://www.debian.org/security/2005/dsa-780
http://www.debian.org/security/2006/dsa-1136
http://www.debian.org/security/2006/dsa-936	Vendor Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2005:138
http://www.novell.com/linux/security/advisories/2005_19_sr.html
http://www.redhat.com/support/errata/RHSA-2005-670.html
http://www.redhat.com/support/errata/RHSA-2005-671.html
http://www.redhat.com/support/errata/RHSA-2005-706.html
http://www.redhat.com/support/errata/RHSA-2005-708.html
http://www.securityfocus.com/archive/1/427053/100/0/threaded
http://www.securityfocus.com/archive/1/427990/100/0/threaded
http://www.securityfocus.com/bid/14529
http://www.vupen.com/english/advisories/2007/2280
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10280
https://usn.ubuntu.com/163-1/

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: redhat

Published: 2005-08-16T04:00:00

Updated: 2018-10-19T14:57:01

Reserved: 2005-06-30T00:00:00

Link: CVE-2005-2097

JSON object: View

NVD Information

Status : Modified

Published: 2005-08-16T04:00:00.000

Modified: 2018-10-19T15:32:31.220

Link: CVE-2005-2097

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-Other

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2005-08-09T00:00:00", "descriptions": [{"lang": "en", "value": "xpdf and kpdf do not properly validate the \"loca\" table in PDF files, which allows local users to cause a denial of service (disk consumption and hang) via a PDF file with a \"broken\" loca table, which causes a large temporary file to be created when xpdf attempts to reconstruct the information."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-19T14:57:01", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"name": "RHSA-2005:706", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2005-706.html"}, {"name": "17277", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/17277"}, {"name": "RHSA-2005:671", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2005-671.html"}, {"name": "oval:org.mitre.oval:def:10280", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10280"}, {"name": "DSA-1136", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2006/dsa-1136"}, {"name": "MDKSA-2005:138", "tags": ["vendor-advisory", "x_refsource_MANDRIVA"], "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:138"}, {"name": "SUSE-SR:2005:019", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://www.novell.com/linux/security/advisories/2005_19_sr.html"}, {"name": "102972", "tags": ["vendor-advisory", "x_refsource_SUNALERT"], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102972-1"}, {"name": "18398", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/18398"}, {"name": "FLSA-2006:176751", "tags": ["vendor-advisory", "x_refsource_FEDORA"], "url": "http://www.securityfocus.com/archive/1/427053/100/0/threaded"}, {"name": "DSA-936", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2006/dsa-936"}, {"name": "USN-163-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "https://usn.ubuntu.com/163-1/"}, {"name": "ADV-2007-2280", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2007/2280"}, {"name": "RHSA-2005:670", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2005-670.html"}, {"name": "18407", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/18407"}, {"name": "25729", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/25729"}, {"name": "SCOSA-2005.42", "tags": ["vendor-advisory", "x_refsource_SCO"], "url": "ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.42/SCOSA-2005.42.txt"}, {"name": "DSA-780", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2005/dsa-780"}, {"name": "14529", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/14529"}, {"name": "FLSA:175404", "tags": ["vendor-advisory", "x_refsource_FEDORA"], "url": "http://www.securityfocus.com/archive/1/427990/100/0/threaded"}, {"name": "RHSA-2005:708", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2005-708.html"}, {"name": "21339", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/21339"}]}}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2005-2097", "datePublished": "2005-08-16T04:00:00", "dateReserved": "2005-06-30T00:00:00", "dateUpdated": "2018-10-19T14:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:kde:kpdf:*:*:*:*:*:*:*:*", "matchCriteriaId": "41EF2714-DEC9-407F-9D1B-EF2A4D8B4DC3", "vulnerable": true}, {"criteria": "cpe:2.3:a:xpdf:xpdf:3.0:*:*:*:*:*:*:*", "matchCriteriaId": "7B93B3ED-AF82-49A9-8C7F-E5F652F19669", "vulnerable": true}, {"criteria": "cpe:2.3:a:xpdf:xpdf:3.0_pl2:*:*:*:*:*:*:*", "matchCriteriaId": "F6D23CF8-2B6C-4D2A-8E5E-6AACE99A7C19", "vulnerable": true}, {"criteria": "cpe:2.3:a:xpdf:xpdf:3.0_pl3:*:*:*:*:*:*:*", "matchCriteriaId": "9107B531-7254-4908-97F0-3BF1EA0495AC", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "xpdf and kpdf do not properly validate the \"loca\" table in PDF files, which allows local users to cause a denial of service (disk consumption and hang) via a PDF file with a \"broken\" loca table, which causes a large temporary file to be created when xpdf attempts to reconstruct the information."}], "id": "CVE-2005-2097", "lastModified": "2018-10-19T15:32:31.220", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 2.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2005-08-16T04:00:00.000", "references": [{"source": "secalert@redhat.com", "url": "ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.42/SCOSA-2005.42.txt"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/17277"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/18398"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/18407"}, {"source": "secalert@redhat.com", "url": "http://secunia.com/advisories/21339"}, {"source": "secalert@redhat.com", "url": "http://secunia.com/advisories/25729"}, {"source": "secalert@redhat.com", "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102972-1"}, {"source": "secalert@redhat.com", "url": "http://www.debian.org/security/2005/dsa-780"}, {"source": "secalert@redhat.com", "url": "http://www.debian.org/security/2006/dsa-1136"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "http://www.debian.org/security/2006/dsa-936"}, {"source": "secalert@redhat.com", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:138"}, {"source": "secalert@redhat.com", "url": "http://www.novell.com/linux/security/advisories/2005_19_sr.html"}, {"source": "secalert@redhat.com", "url": "http://www.redhat.com/support/errata/RHSA-2005-670.html"}, {"source": "secalert@redhat.com", "url": "http://www.redhat.com/support/errata/RHSA-2005-671.html"}, {"source": "secalert@redhat.com", "url": "http://www.redhat.com/support/errata/RHSA-2005-706.html"}, {"source": "secalert@redhat.com", "url": "http://www.redhat.com/support/errata/RHSA-2005-708.html"}, {"source": "secalert@redhat.com", "url": "http://www.securityfocus.com/archive/1/427053/100/0/threaded"}, {"source": "secalert@redhat.com", "url": "http://www.securityfocus.com/archive/1/427990/100/0/threaded"}, {"source": "secalert@redhat.com", "url": "http://www.securityfocus.com/bid/14529"}, {"source": "secalert@redhat.com", "url": "http://www.vupen.com/english/advisories/2007/2280"}, {"source": "secalert@redhat.com", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10280"}, {"source": "secalert@redhat.com", "url": "https://usn.ubuntu.com/163-1/"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}