The Adobe PDF specification 1.3, as implemented by (a) xpdf 3.0.1 patch 2, (b) kpdf in KDE before 3.5.5, (c) poppler before 0.5.4, and other products, allows remote attackers to have an unknown impact, possibly including denial of service (infinite loop), arbitrary code execution, or memory corruption, via a PDF file with a (1) crafted catalog dictionary or (2) a crafted Pages attribute that references an invalid page tree node.
References
Link Providers
http://docs.info.apple.com/article.html?artnum=305214 cve-icon cve-icon
http://projects.info-pull.com/moab/MOAB-06-01-2007.html cve-icon cve-icon
http://secunia.com/advisories/23791 cve-icon cve-icon
http://secunia.com/advisories/23799 cve-icon cve-icon
http://secunia.com/advisories/23808 cve-icon cve-icon
http://secunia.com/advisories/23813 cve-icon cve-icon
http://secunia.com/advisories/23815 cve-icon cve-icon
http://secunia.com/advisories/23839 cve-icon cve-icon
http://secunia.com/advisories/23844 cve-icon cve-icon
http://secunia.com/advisories/23876 cve-icon cve-icon
http://secunia.com/advisories/24204 cve-icon cve-icon
http://secunia.com/advisories/24479 cve-icon cve-icon
http://securitytracker.com/id?1017514 cve-icon cve-icon
http://support.novell.com/techcenter/psdb/44d7cb9b669d58e0ce5aa5d7ab2c7c53.html cve-icon cve-icon
http://www.kde.org/info/security/advisory-20070115-1.txt cve-icon cve-icon
http://www.mandriva.com/security/advisories?name=MDKSA-2007:018 cve-icon cve-icon
http://www.mandriva.com/security/advisories?name=MDKSA-2007:019 cve-icon cve-icon
http://www.mandriva.com/security/advisories?name=MDKSA-2007:020 cve-icon cve-icon
http://www.mandriva.com/security/advisories?name=MDKSA-2007:021 cve-icon cve-icon
http://www.mandriva.com/security/advisories?name=MDKSA-2007:022 cve-icon cve-icon
http://www.mandriva.com/security/advisories?name=MDKSA-2007:024 cve-icon cve-icon
http://www.novell.com/linux/security/advisories/2007_3_sr.html cve-icon cve-icon
http://www.securityfocus.com/archive/1/457055/100/0/threaded cve-icon cve-icon
http://www.securityfocus.com/bid/21910 cve-icon cve-icon
http://www.securitytracker.com/id?1017749 cve-icon cve-icon
http://www.ubuntu.com/usn/usn-410-1 cve-icon cve-icon
http://www.ubuntu.com/usn/usn-410-2 cve-icon cve-icon
http://www.us-cert.gov/cas/techalerts/TA07-072A.html cve-icon cve-icon
http://www.vupen.com/english/advisories/2007/0203 cve-icon cve-icon
http://www.vupen.com/english/advisories/2007/0212 cve-icon cve-icon
http://www.vupen.com/english/advisories/2007/0244 cve-icon cve-icon
http://www.vupen.com/english/advisories/2007/0930 cve-icon cve-icon
https://exchange.xforce.ibmcloud.com/vulnerabilities/31364 cve-icon cve-icon
https://issues.rpath.com/browse/RPL-964 cve-icon cve-icon
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-01-09T00:00:00

Updated: 2024-08-07T12:03:37.070Z

Reserved: 2007-01-08T00:00:00

Link: CVE-2007-0104

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2007-01-09T00:28:00.000

Modified: 2024-11-21T00:24:58.830

Link: CVE-2007-0104

cve-icon Redhat

No data.