CVE-2010-0207

CWE-8357 documents7 sources
Severity
5.5MEDIUM
EPSS
0.4%
top 36.66%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Poppler PopplerXpdfreader Xpdf
Timeline
PublishedOct 30
Latest updateApr 21

Description

In xpdf, the xref table contains an infinite loop which allows remote attackers to cause a denial of service (application crash) in xpdf-based PDF viewers.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

NVDxpdfreader/xpdf3.03-17, 3.04-13, 3.04-4+2
Debianpoppler< 0.16.3-1+3
CVEListV5poppler/poppler0.26.5-2

🔴Vulnerability Details

3
GHSA
GHSA-3274-8h4c-g6q9: In xpdf, the xref table contains an infinite loop which allows remote attackers to cause a denial of service (application crash) in xpdf-based PDF vie2022-04-21
CVEList
CVE-2010-0207: In xpdf, the xref table contains an infinite loop which allows remote attackers to cause a denial of service (application crash) in xpdf-based PDF vie2019-10-30
OSV
CVE-2010-0207: In xpdf, the xref table contains an infinite loop which allows remote attackers to cause a denial of service (application crash) in xpdf-based PDF vie2019-10-30

📋Vendor Advisories

2
Red Hat
xpdf: XRef table parsing infinite loop2010-05-19
Debian
CVE-2010-0207: poppler - In xpdf, the xref table contains an infinite loop which allows remote attackers ...2010

💬Community

1
Bugzilla
CVE-2010-0207 xpdf: XRef table parsing infinite loop2010-04-19
CVE-2010-0207 (MEDIUM CVSS 5.5) | cvebase.io