CVE-2007-5393
EPSS 14.2%kdegraphics - buffer overflow with arbitrary code execution
發布日:2007/11/8修改日:2026/4/28
描述
Heap-based buffer overflow in the CCITTFaxStream::lookChar method in xpdf/Stream.cc in Xpdf 3.02p11 allows remote attackers to execute arbitrary code via a PDF file that contains a crafted CCITTFaxDecode filter.
受影響套件(5)
- Debian/cupsfrom 0, < 1.1.22-7
- Debian/kdegraphicsfrom 0, < 4:3.5.5-3etch2
- Debian/libextractorfrom 0, < 0.5.12-1
- Debian/popplerfrom 0, < 0.6.2-1
- Debian/xpdffrom 0, < 3.02-1.3