Integer overflow in the ObjectStream::ObjectStream function in XRef.cc in Xpdf 3.x before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, CUPS pdftops, and teTeX, might allow remote attackers to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2009-10-21T17:00:00
Updated: 2017-09-18T12:57:01
Reserved: 2009-10-09T00:00:00
Link: CVE-2009-3608
JSON object: View
NVD Information
Status : Modified
Published: 2009-10-21T17:30:00.407
Modified: 2023-02-13T02:20:29.417
Link: CVE-2009-3608
JSON object: View
Redhat Information
No data.
CWE