CVE-2011-1554
NONE EPSS 91.7%
Published Mar 31, 201115y ago · Modified Jun 16, 20262w ago
Published Mar 31, 2011 15y ago
Last Modified Jun 16, 2026 2w ago
Description
Off-by-one error in t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6, teTeX, and other products, allows remote attackers to cause a denial of service (application crash) via a PDF document containing a crafted Type 1 font that triggers an invalid memory read, integer overflow, and invalid pointer dereference, a different vulnerability than CVE-2011-0764.
Threat Intelligence
EPSS Exploit Probability
91.7% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Weaknesses 1
CWE-189
Affected Products 64
| Vendor | Product | Version | Range |
|---|---|---|---|
| t1lib | t1lib | * | ≤5.1.2 |
| t1lib | t1lib | 0.1 | any |
| t1lib | t1lib | 0.2 | any |
| t1lib | t1lib | 0.3 | any |
| t1lib | t1lib | 0.4 | any |
| t1lib | t1lib | 0.5 | any |
| t1lib | t1lib | 0.6 | any |
| t1lib | t1lib | 0.7 | any |
| t1lib | t1lib | 0.8 | any |
| t1lib | t1lib | 0.9 | any |
| t1lib | t1lib | 0.9.1 | any |
| t1lib | t1lib | 0.9.2 | any |
| t1lib | t1lib | 1.0 | any |
| t1lib | t1lib | 1.0.1 | any |
| t1lib | t1lib | 1.1.0 | any |
| t1lib | t1lib | 1.1.1 | any |
| t1lib | t1lib | 1.2 | any |
| t1lib | t1lib | 1.3 | any |
| t1lib | t1lib | 1.3.1 | any |
| t1lib | t1lib | 5.0.0 | any |
| t1lib | t1lib | 5.0.1 | any |
| t1lib | t1lib | 5.0.2 | any |
| t1lib | t1lib | 5.1.0 | any |
| t1lib | t1lib | 5.1.1 | any |
| foolabs | xpdf | 0.5a | any |
| foolabs | xpdf | 0.7a | any |
| foolabs | xpdf | 0.91a | any |
| foolabs | xpdf | 0.91b | any |
| foolabs | xpdf | 0.91c | any |
| foolabs | xpdf | 0.92a | any |
| foolabs | xpdf | 0.92b | any |
| foolabs | xpdf | 0.92c | any |
| foolabs | xpdf | 0.92d | any |
| foolabs | xpdf | 0.92e | any |
| foolabs | xpdf | 0.93a | any |
| foolabs | xpdf | 0.93b | any |
| foolabs | xpdf | 0.93c | any |
| foolabs | xpdf | 1.00a | any |
| foolabs | xpdf | 3.0.1 | any |
| foolabs | xpdf | 3.02pl1 | any |
| foolabs | xpdf | 3.02pl2 | any |
| foolabs | xpdf | 3.02pl3 | any |
| foolabs | xpdf | 3.02pl4 | any |
| glyphandcog | xpdfreader | * | ≤3.02 |
| glyphandcog | xpdfreader | 0.2 | any |
| glyphandcog | xpdfreader | 0.3 | any |
| glyphandcog | xpdfreader | 0.4 | any |
| glyphandcog | xpdfreader | 0.5 | any |
| glyphandcog | xpdfreader | 0.6 | any |
| glyphandcog | xpdfreader | 0.7 | any |
| glyphandcog | xpdfreader | 0.80 | any |
| glyphandcog | xpdfreader | 0.90 | any |
| glyphandcog | xpdfreader | 0.91 | any |
| glyphandcog | xpdfreader | 0.92 | any |
| glyphandcog | xpdfreader | 0.93 | any |
| glyphandcog | xpdfreader | 1.00 | any |
| glyphandcog | xpdfreader | 1.01 | any |
| glyphandcog | xpdfreader | 2.00 | any |
| glyphandcog | xpdfreader | 2.01 | any |
| glyphandcog | xpdfreader | 2.02 | any |
| glyphandcog | xpdfreader | 2.03 | any |
| glyphandcog | xpdfreader | 3.00 | any |
| glyphandcog | xpdfreader | 3.01 | any |
| glyphandcog | xpdfreader | 3.02 | any |
References 13
- rhn.redhat.com http://rhn.redhat.com/errata/RHSA-2012-1201.html
- secunia.com http://secunia.com/advisories/43823
- secunia.com http://secunia.com/advisories/48985
- securityreason.com http://securityreason.com/securityalert/8171
- securitytracker.com http://securitytracker.com/id?1025266
- foolabs.com http://www.foolabs.com/xpdf/download.html
- kb.cert.org http://www.kb.cert.org/vuls/id/376500
- kb.cert.org http://www.kb.cert.org/vuls/id/MAPG-8ECL8X
- mandriva.com http://www.mandriva.com/security/advisories?name=MDVSA-2012:144
- securityfocus.com http://www.securityfocus.com/archive/1/517205/100/0/threaded
- toucan-system.com http://www.toucan-system.com/advisories/tssa-2011-01.txt
- vupen.com http://www.vupen.com/english/advisories/2011/0728
- security.gentoo.org https://security.gentoo.org/glsa/201701-57
Remediation
- foolabs.com http://www.foolabs.com/xpdf/download.html