CVE-2009-3609

NONE EPSS 90.3%
Published Oct 21, 200916y ago · Modified Jun 16, 20262w ago
Find Similar
Published Oct 21, 2009 16y ago
Last Modified Jun 16, 2026 2w ago

Description

Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read.

Threat Intelligence

EPSS Exploit Probability
90.3% percentile
Exploit & Patch Status
Public Exploit Known
Patch Available

Weaknesses 1

CWE-189

Affected Products 61

VendorProductVersionRange
foolabsxpdf3.02pl1any
foolabsxpdf3.02pl2any
foolabsxpdf3.02pl3any
glyphandcogxpdfreader3.00any
glyphandcogxpdfreader3.01any
glyphandcogxpdfreader3.02any
popplerpoppler* ≤0.12.0
popplerpoppler0.1any
popplerpoppler0.1.1any
popplerpoppler0.1.2any
popplerpoppler0.2.0any
popplerpoppler0.3.0any
popplerpoppler0.3.1any
popplerpoppler0.3.2any
popplerpoppler0.3.3any
popplerpoppler0.4.0any
popplerpoppler0.4.1any
popplerpoppler0.4.2any
popplerpoppler0.4.3any
popplerpoppler0.4.4any
popplerpoppler0.5.0any
popplerpoppler0.5.1any
popplerpoppler0.5.2any
popplerpoppler0.5.3any
popplerpoppler0.5.4any
popplerpoppler0.5.9any
popplerpoppler0.6.0any
popplerpoppler0.6.1any
popplerpoppler0.6.2any
popplerpoppler0.6.3any
popplerpoppler0.6.4any
popplerpoppler0.7.0any
popplerpoppler0.7.1any
popplerpoppler0.7.2any
popplerpoppler0.7.3any
popplerpoppler0.8.0any
popplerpoppler0.8.1any
popplerpoppler0.8.2any
popplerpoppler0.8.3any
popplerpoppler0.8.4any
popplerpoppler0.8.6any
popplerpoppler0.8.7any
popplerpoppler0.9.0any
popplerpoppler0.9.1any
popplerpoppler0.9.2any
popplerpoppler0.9.3any
popplerpoppler0.10.0any
popplerpoppler0.10.1any
popplerpoppler0.10.2any
popplerpoppler0.10.3any
popplerpoppler0.10.4any
popplerpoppler0.10.5any
popplerpoppler0.10.6any
popplerpoppler0.10.7any
popplerpoppler0.11.0any
popplerpoppler0.11.1any
popplerpoppler0.11.2any
popplerpoppler0.11.3any
glyph_and_cogpdftops*any
gnomegpdf*any
kdekpdf*any

References 51

  • ftp.foolabs.com ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.02pl4.patch
    Exploit
  • lists.fedoraproject.org http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035340.html
  • lists.fedoraproject.org http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035399.html
  • lists.fedoraproject.org http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035408.html
  • lists.opensuse.org http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00004.html
  • poppler.freedesktop.org http://poppler.freedesktop.org/
    PatchVendor Advisory
  • secunia.com http://secunia.com/advisories/37023
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/37028
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/37034
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/37037
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/37043
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/37051
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/37054
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/37061
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/37077
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/37079
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/37114
  • secunia.com http://secunia.com/advisories/37159
  • secunia.com http://secunia.com/advisories/39327
  • secunia.com http://secunia.com/advisories/39938
  • securitytracker.com http://securitytracker.com/id?1023029
  • sunsolve.sun.com http://sunsolve.sun.com/search/document.do?assetkey=1-66-274030-1
  • sunsolve.sun.com http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021706.1-1
  • debian.org http://www.debian.org/security/2010/dsa-2028
  • debian.org http://www.debian.org/security/2010/dsa-2050
  • mandriva.com http://www.mandriva.com/security/advisories?name=MDVSA-2009:287
  • mandriva.com http://www.mandriva.com/security/advisories?name=MDVSA-2009:334
  • mandriva.com http://www.mandriva.com/security/advisories?name=MDVSA-2011:175
  • redhat.com http://www.redhat.com/support/errata/RHSA-2010-0755.html
  • securityfocus.com http://www.securityfocus.com/bid/36703
    ExploitPatch
  • ubuntu.com http://www.ubuntu.com/usn/USN-850-1
  • ubuntu.com http://www.ubuntu.com/usn/USN-850-3
  • vupen.com http://www.vupen.com/english/advisories/2009/2924
    PatchVendor Advisory
  • vupen.com http://www.vupen.com/english/advisories/2009/2925
    Vendor Advisory
  • vupen.com http://www.vupen.com/english/advisories/2009/2926
    Vendor Advisory
  • vupen.com http://www.vupen.com/english/advisories/2009/2928
    Vendor Advisory
  • vupen.com http://www.vupen.com/english/advisories/2010/0802
  • vupen.com http://www.vupen.com/english/advisories/2010/1220
  • bugzilla.redhat.com https://bugzilla.redhat.com/show_bug.cgi?id=526893
    ExploitPatch
  • exchange.xforce.ibmcloud.com https://exchange.xforce.ibmcloud.com/vulnerabilities/53800
  • oval.cisecurity.org https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11043
  • oval.cisecurity.org https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8134
  • rhn.redhat.com https://rhn.redhat.com/errata/RHSA-2009-1500.html
  • rhn.redhat.com https://rhn.redhat.com/errata/RHSA-2009-1501.html
  • rhn.redhat.com https://rhn.redhat.com/errata/RHSA-2009-1502.html
  • rhn.redhat.com https://rhn.redhat.com/errata/RHSA-2009-1503.html
  • rhn.redhat.com https://rhn.redhat.com/errata/RHSA-2009-1504.html
  • rhn.redhat.com https://rhn.redhat.com/errata/RHSA-2009-1512.html
  • rhn.redhat.com https://rhn.redhat.com/errata/RHSA-2009-1513.html
  • redhat.com https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00750.html
  • redhat.com https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00784.html

Remediation