critical
10
CWE
NVD-CWE-Other 190
Advisory Published
Updated

CVE-2004-0888: Integer Overflow

First published: Tue Oct 26 2004(Updated: )

Multiple integer overflows in xpdf 2.0 and 3.0, and other packages that use xpdf code such as CUPS, gpdf, and kdegraphics, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, a different set of vulnerabilities than those identified by CVE-2004-0889.

Credit: cve@mitre.org cve@mitre.org

Affected SoftwareAffected VersionHow to fix
Pdftohtml Pdftohtml=0.32a
Easy Software Products Cups=1.1.19_rc5
Xpdf Xpdf=2.0
Easy Software Products Cups=1.1.10
Easy Software Products Cups=1.1.16
Xpdf Xpdf=1.0
Kde Koffice=1.3_beta2
Easy Software Products Cups=1.1.7
Pdftohtml Pdftohtml=0.35
Xpdf Xpdf=0.91
Easy Software Products Cups=1.0.4_8
Gnome Gpdf=0.112
Kde Koffice=1.3.3
Pdftohtml Pdftohtml=0.32b
Easy Software Products Cups=1.1.15
Kde Koffice=1.3_beta3
Easy Software Products Cups=1.1.13
Pdftohtml Pdftohtml=0.33a
Xpdf Xpdf=2.3
Kde Koffice=1.3
Tetex Tetex=1.0.7
Xpdf Xpdf=0.92
Pdftohtml Pdftohtml=0.36
Xpdf Xpdf=1.0a
Easy Software Products Cups=1.1.17
Gnome Gpdf=0.131
Easy Software Products Cups=1.1.4_3
Easy Software Products Cups=1.1.4
Pdftohtml Pdftohtml=0.34
Kde Koffice=1.3_beta1
Easy Software Products Cups=1.1.12
Xpdf Xpdf=2.1
Xpdf Xpdf=0.90
Xpdf Xpdf=3.0
Easy Software Products Cups=1.1.4_5
Tetex Tetex=2.0.2
Easy Software Products Cups=1.1.1
Easy Software Products Cups=1.1.20
Xpdf Xpdf=0.93
Easy Software Products Cups=1.1.18
Tetex Tetex=2.0.1
Easy Software Products Cups=1.1.19
Easy Software Products Cups=1.0.4
Easy Software Products Cups=1.1.14
Kde Koffice=1.3.1
Easy Software Products Cups=1.1.4_2
Kde Kpdf=3.2
Pdftohtml Pdftohtml=0.33
Xpdf Xpdf=1.1
Kde Koffice=1.3.2
Tetex Tetex=2.0
Easy Software Products Cups=1.1.6
Redhat Enterprise Linux=2.1
Redhat Fedora Core=core_2.0
Suse Suse Linux=9.2
Redhat Enterprise Linux Desktop=3.0
Debian Debian Linux=3.0
Suse Suse Linux=9.0
Ubuntu Ubuntu Linux=4.1
Redhat Linux Advanced Workstation=2.1
KDE KDE=3.3.1
Debian Debian Linux=3.0
Suse Suse Linux=8.2
Redhat Enterprise Linux=3.0
Redhat Enterprise Linux=2.1
Debian Debian Linux=3.0
KDE KDE=3.2.2
KDE KDE=3.2.1
Debian Debian Linux=3.0
Redhat Enterprise Linux=2.1
Suse Suse Linux=9.0
Debian Debian Linux=3.0
Suse Suse Linux=8.0
Debian Debian Linux=3.0
Debian Debian Linux=3.0
Debian Debian Linux=3.0
Redhat Linux Advanced Workstation=2.1
Suse Suse Linux=9.1
Redhat Enterprise Linux=3.0
Debian Debian Linux=3.0
Redhat Enterprise Linux=2.1
Debian Debian Linux=3.0
KDE KDE=3.3
Redhat Enterprise Linux=2.1
KDE KDE=3.2
KDE KDE=3.2.3
Ubuntu Ubuntu Linux=4.1
Gentoo Linux
Debian Debian Linux=3.0
Debian Debian Linux=3.0
Suse Suse Linux=8.1
Redhat Enterprise Linux=2.1
Redhat Enterprise Linux=3.0
ubuntu/cupsys<1.2.0-0ubuntu5
1.2.0-0ubuntu5
ubuntu/cupsys<1.2.0-0ubuntu5
1.2.0-0ubuntu5
ubuntu/cupsys<1.2.0-0ubuntu5
1.2.0-0ubuntu5
ubuntu/gpdf<2.10.0-2
2.10.0-2
ubuntu/gpdf<2.10.0-2
2.10.0-2
ubuntu/kdegraphics<3.5.2-0ubuntu6
3.5.2-0ubuntu6
ubuntu/kdegraphics<3.5.2-0ubuntu6
3.5.2-0ubuntu6
ubuntu/kdegraphics<3.5.2-0ubuntu6
3.5.2-0ubuntu6
ubuntu/koffice<1.5.0-0ubuntu9.2
1.5.0-0ubuntu9.2
ubuntu/koffice<1.5.2-0ubuntu2.2
1.5.2-0ubuntu2.2
ubuntu/koffice<1.6.2-0ubuntu1.1
1.6.2-0ubuntu1.1
ubuntu/pdftohtml<0.36-13
0.36-13
ubuntu/pdftohtml<0.36-13
0.36-13
ubuntu/pdftohtml<0.36-13
0.36-13
ubuntu/tetex-bin<3.0-13ubuntu6
3.0-13ubuntu6
ubuntu/tetex-bin<3.0-13ubuntu6
3.0-13ubuntu6
ubuntu/tetex-bin<3.0-13ubuntu6
3.0-13ubuntu6
debian/cups
2.3.3op2-3+deb11u6
2.3.3op2-3+deb11u2
2.4.2-3+deb12u5
2.4.10-1
debian/xpdf
3.04+git20210103-3
3.04+git20220601-1
3.04+git20240613-1

Remedy

http://www.redhat.com/support/errata/RHSA-2004-543.html

Remedy

http://www.securityfocus.com/bid/11501

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203