Buffer overflow in the Gfx::doImage function in Gfx.cc for xpdf 3.00, and other products that share code such as tetex-bin and kpdf in KDE 3.2.x to 3.2.3 and 3.3.x to 3.3.2, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted PDF file that causes the boundaries of a maskColors array to be exceeded.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2004-12-22T05:00:00
Updated: 2024-08-08T00:39:00.871Z
Reserved: 2004-12-02T00:00:00
Link: CVE-2004-1125
Vulnrichment
No data.
NVD
Status : Modified
Published: 2005-01-10T05:00:00.000
Modified: 2024-11-20T23:50:10.213
Link: CVE-2004-1125
Redhat