Trend Micro Security

Xpdf Splash DrawImage Integer Overflow

2015年7月21日
  危険度: : 緊急
  CVE識別番号: CVE-2009-3604

  概要

The Splash::drawImage function in Splash.cc in Xpdf 2.x and 3.x before 3.02pl4, and Poppler 0.x, as used in GPdf and kdegraphics KPDF, does not properly allocate memory, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document that triggers a NULL pointer dereference or a heap-based buffer overflow.

  トレンドマイクロの対策

Apply associated Trend Micro DPI Rules.

  対応方法

  Trend Micro Deep Security DPI Rule Number: 1003785
  Trend Micro Deep Security DPI Rule Name: 1003785 - Xpdf Splash DrawImage Integer Overflow

  影響を受けるソフトウェア

  • foolabs xpdf 2.00
  • foolabs xpdf 2.01
  • foolabs xpdf 2.02
  • foolabs xpdf 2.03
  • foolabs xpdf 3.00
  • foolabs xpdf 3.01
  • foolabs xpdf 3.02
  • foolabs xpdf 3.02pl1
  • foolabs xpdf 3.02pl2
  • foolabs xpdf 3.02pl3
  • poppler poppler 0.1
  • poppler poppler 0.1.1
  • poppler poppler 0.1.2
  • poppler poppler 0.10.0
  • poppler poppler 0.10.1
  • poppler poppler 0.10.2
  • poppler poppler 0.10.3
  • poppler poppler 0.10.4
  • poppler poppler 0.10.5
  • poppler poppler 0.10.6
  • poppler poppler 0.10.7
  • poppler poppler 0.11.0
  • poppler poppler 0.11.1
  • poppler poppler 0.11.2
  • poppler poppler 0.11.3
  • poppler poppler 0.12.0
  • poppler poppler 0.2.0
  • poppler poppler 0.3.0
  • poppler poppler 0.3.1
  • poppler poppler 0.3.2
  • poppler poppler 0.3.3
  • poppler poppler 0.4.0
  • poppler poppler 0.4.1
  • poppler poppler 0.4.2
  • poppler poppler 0.4.3
  • poppler poppler 0.4.4
  • poppler poppler 0.5.0
  • poppler poppler 0.5.1
  • poppler poppler 0.5.2
  • poppler poppler 0.5.3
  • poppler poppler 0.5.4
  • poppler poppler 0.5.9
  • poppler poppler 0.5.90
  • poppler poppler 0.5.91
  • poppler poppler 0.6.0
  • poppler poppler 0.6.1
  • poppler poppler 0.6.2
  • poppler poppler 0.6.3
  • poppler poppler 0.6.4
  • poppler poppler 0.7.0
  • poppler poppler 0.7.1
  • poppler poppler 0.7.2
  • poppler poppler 0.7.3
  • poppler poppler 0.8.0
  • poppler poppler 0.8.1
  • poppler poppler 0.8.2
  • poppler poppler 0.8.3
  • poppler poppler 0.8.4
  • poppler poppler 0.8.5
  • poppler poppler 0.8.6
  • poppler poppler 0.8.7
  • poppler poppler 0.9.0
  • poppler poppler 0.9.1
  • poppler poppler 0.9.2
  • poppler poppler 0.9.3