CVE-2010-3703

The PostScriptFunction::PostScriptFunction function in poppler/Function.cc in the PDF parser in poppler 0.8.7 and possibly other versions up to 0.15.1, and possibly other products, allows context-dependent attackers to cause a denial of service (crash) via a PDF file that triggers an uninitialized pointer dereference.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:poppler:poppler:0.8.7:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.9.0:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.9.1:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.9.2:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.9.3:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.10.0:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.10.1:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.10.2:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.10.3:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.10.4:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.10.5:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.10.6:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.10.7:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.11.0:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.11.1:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.11.2:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.11.3:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.12.0:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.12.1:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.12.2:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.12.3:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.12.4:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.13.0:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.13.1:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.13.2:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.13.3:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.13.4:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.14.0:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.14.1:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.14.2:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.14.3:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.14.4:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.14.5:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.15.0:*:*:*:*:*:*:*
cpe:2.3:a:poppler:poppler:0.15.1:*:*:*:*:*:*:*

History

No history.

Information

Published : 2010-11-05 18:00

Updated : 2024-02-04 17:54


NVD link : CVE-2010-3703

Mitre link : CVE-2010-3703

CVE.ORG link : CVE-2010-3703


JSON object : View

Products Affected

poppler

  • poppler
CWE
CWE-20

Improper Input Validation