OpenBSD VuXML: Documenting security issues in the OpenBSD Ports & Packages Collection

xpdf -- multiple stack overflows in makeFileKey2();

Affected packages
xpdf < 3.00p3

Details

VuXML ID 456f1b12-6a38-11d9-bc5d-00065bd5b0b6
Discovery 2005-01-18
Entry 2005-01-19

Remote exploitation of a buffer overflow vulnerability in the xpdf PDF viewer included in multiple Unix and Linux distributions could allow for arbitrary code execution as the user viewing a PDF file.

The vulnerability specifically exists due to insufficient bounds checking while processing a PDF file that provides malicious values in the /Encrypt /Length tag. The offending code can be found in the Decrypt::makeFileKey2 function in the source file xpdf/Decrypt.cc.

References

CVE Name CAN-2005-0064
URL http://www.idefense.com/application/poi/display?id=186&type=vulnerabilities&flashstatus=false

Copyright © 2003-2005 Jacques Vidrine, Robert Nagy, and contributors.
Please see the source of this document for full copyright information.