CVE-2007-0104 in KDEinfo

Summary

The Adobe PDF specification 1.3, as implemented by (a) xpdf 3.0.1 patch 2, (b) kpdf in KDE before 3.5.5, (c) poppler before 0.5.4, and other products, allows remote attackers to have an unknown impact, possibly including denial of service (infinite loop), arbitrary code execution, or memory corruption, via a PDF file with a (1) crafted catalog dictionary or (2) a crafted Pages attribute that references an invalid page tree node.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservation

01/08/2007

Disclosure

01/08/2007

Moderation

VulDB entry created

Entries

VDB-2843 (1)

CPE

ready

CWE

CWE-20 (Confirmed)

Exploit

Download

CVSS

7.5

EPSS

0.19012

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-0104
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-0104
CVE Details	https://www.cvedetails.com/cve/CVE-2007-0104/

◂ Previous Overview Next ▸