CVE-2009-3603

NONE EPSS 94.4%
Published Oct 21, 200916y ago · Modified Jun 16, 20262w ago
Find Similar
Published Oct 21, 2009 16y ago
Last Modified Jun 16, 2026 2w ago

Description

Integer overflow in the SplashBitmap::SplashBitmap function in Xpdf 3.x before 3.02pl4 and Poppler before 0.12.1 might allow remote attackers to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information. NOTE: this issue reportedly exists because of an incomplete fix for CVE-2009-1188.

Threat Intelligence

EPSS Exploit Probability
94.4% percentile
Exploit & Patch Status
Public Exploit Known
Patch Available

Weaknesses 1

CWE-189

Affected Products 58

VendorProductVersionRange
foolabsxpdf3.02pl1any
foolabsxpdf3.02pl2any
foolabsxpdf3.02pl3any
glyphandcogxpdfreader3.00any
glyphandcogxpdfreader3.01any
glyphandcogxpdfreader3.02any
popplerpoppler* ≤0.12.0
popplerpoppler0.1any
popplerpoppler0.1.1any
popplerpoppler0.1.2any
popplerpoppler0.2.0any
popplerpoppler0.3.0any
popplerpoppler0.3.1any
popplerpoppler0.3.2any
popplerpoppler0.3.3any
popplerpoppler0.4.0any
popplerpoppler0.4.1any
popplerpoppler0.4.2any
popplerpoppler0.4.3any
popplerpoppler0.4.4any
popplerpoppler0.5.0any
popplerpoppler0.5.1any
popplerpoppler0.5.2any
popplerpoppler0.5.3any
popplerpoppler0.5.4any
popplerpoppler0.5.9any
popplerpoppler0.6.0any
popplerpoppler0.6.1any
popplerpoppler0.6.2any
popplerpoppler0.6.3any
popplerpoppler0.6.4any
popplerpoppler0.7.0any
popplerpoppler0.7.1any
popplerpoppler0.7.2any
popplerpoppler0.7.3any
popplerpoppler0.8.0any
popplerpoppler0.8.1any
popplerpoppler0.8.2any
popplerpoppler0.8.3any
popplerpoppler0.8.4any
popplerpoppler0.8.6any
popplerpoppler0.8.7any
popplerpoppler0.9.0any
popplerpoppler0.9.1any
popplerpoppler0.9.2any
popplerpoppler0.9.3any
popplerpoppler0.10.0any
popplerpoppler0.10.1any
popplerpoppler0.10.2any
popplerpoppler0.10.3any
popplerpoppler0.10.4any
popplerpoppler0.10.5any
popplerpoppler0.10.6any
popplerpoppler0.10.7any
popplerpoppler0.11.0any
popplerpoppler0.11.1any
popplerpoppler0.11.2any
popplerpoppler0.11.3any

References 35

  • ftp.foolabs.com ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.02pl4.patch
    Patch
  • lists.fedoraproject.org http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035340.html
  • lists.fedoraproject.org http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035399.html
  • lists.fedoraproject.org http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035408.html
  • lists.opensuse.org http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00004.html
  • poppler.freedesktop.org http://poppler.freedesktop.org/
    PatchVendor Advisory
  • secunia.com http://secunia.com/advisories/37034
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/37053
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/37054
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/37114
  • secunia.com http://secunia.com/advisories/37159
  • secunia.com http://secunia.com/advisories/39327
  • secunia.com http://secunia.com/advisories/39938
  • securitytracker.com http://securitytracker.com/id?1023029
  • sunsolve.sun.com http://sunsolve.sun.com/search/document.do?assetkey=1-66-274030-1
  • sunsolve.sun.com http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021706.1-1
  • debian.org http://www.debian.org/security/2010/dsa-2028
  • debian.org http://www.debian.org/security/2010/dsa-2050
  • mandriva.com http://www.mandriva.com/security/advisories?name=MDVSA-2009:287
  • mandriva.com http://www.mandriva.com/security/advisories?name=MDVSA-2010:087
  • mandriva.com http://www.mandriva.com/security/advisories?name=MDVSA-2011:175
  • securityfocus.com http://www.securityfocus.com/bid/36703
    ExploitPatch
  • ubuntu.com http://www.ubuntu.com/usn/USN-850-1
  • ubuntu.com http://www.ubuntu.com/usn/USN-850-3
  • vupen.com http://www.vupen.com/english/advisories/2009/2924
    PatchVendor Advisory
  • vupen.com http://www.vupen.com/english/advisories/2009/2925
    PatchVendor Advisory
  • vupen.com http://www.vupen.com/english/advisories/2010/0802
  • vupen.com http://www.vupen.com/english/advisories/2010/1040
  • vupen.com http://www.vupen.com/english/advisories/2010/1220
  • bugzilla.redhat.com https://bugzilla.redhat.com/show_bug.cgi?id=526915
  • exchange.xforce.ibmcloud.com https://exchange.xforce.ibmcloud.com/vulnerabilities/53793
  • oval.cisecurity.org https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9671
  • rhn.redhat.com https://rhn.redhat.com/errata/RHSA-2009-1504.html
  • redhat.com https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00750.html
  • redhat.com https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00784.html

Remediation

  • ftp.foolabs.com ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.02pl4.patch
    Patch
  • poppler.freedesktop.org http://poppler.freedesktop.org/
    PatchVendor Advisory
  • securityfocus.com http://www.securityfocus.com/bid/36703
    ExploitPatch
  • vupen.com http://www.vupen.com/english/advisories/2009/2924
    PatchVendor Advisory
  • vupen.com http://www.vupen.com/english/advisories/2009/2925
    PatchVendor Advisory