cbcvebase.
CVE-2010-0207
published 2019-10-30

CVE-2010-0207: In xpdf, the xref table contains an infinite loop which allows remote attackers to cause a denial of service (application crash) in xpdf-based PDF viewers.

medium5.5CVSS 3.1
AVLACLPRNUIRSUCNINAH
In xpdf, the xref table contains an infinite loop which allows remote attackers to cause a denial of service (application crash) in xpdf-based PDF viewers.

Affected

10 ranges
VendorProductVersion rangeFixed in
debianpoppler< poppler 0.16.3-1 (bookworm)poppler 0.16.3-1 (bookworm)
debianxpdf< poppler 0.16.3-1 (bookworm)poppler 0.16.3-1 (bookworm)
freedesktoppoppler>= 0 < 0.16.3-10.16.3-1
freedesktoppoppler>= 0 < 0.16.3-10.16.3-1
freedesktoppoppler>= 0 < 0.16.3-10.16.3-1
freedesktoppoppler>= 0 < 0.16.3-10.16.3-1
popplerpoppler
xpdfreaderxpdf
xpdfreaderxpdf
xpdfreaderxpdf

CVSS provenance

nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
osv5.5MEDIUM