Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2010-3703
Deferred
More InfoOfficial Page
Source-secalert@redhat.com
View Known Exploited Vulnerability (KEV) details
Published At-05 Nov, 2010 | 18:00
Updated At-11 Apr, 2025 | 00:51

The PostScriptFunction::PostScriptFunction function in poppler/Function.cc in the PDF parser in poppler 0.8.7 and possibly other versions up to 0.15.1, and possibly other products, allows context-dependent attackers to cause a denial of service (crash) via a PDF file that triggers an uninitialized pointer dereference.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary2.04.3MEDIUM
AV:N/AC:M/Au:N/C:N/I:N/A:P
Primary2.04.3MEDIUM
AV:N/AC:M/Au:N/C:N/I:N/A:P
Type: Primary
Version: 2.0
Base score: 4.3
Base severity: MEDIUM
Vector:
AV:N/AC:M/Au:N/C:N/I:N/A:P
Type: Primary
Version: 2.0
Base score: 4.3
Base severity: MEDIUM
Vector:
AV:N/AC:M/Au:N/C:N/I:N/A:P
CPE Matches
poppler
poppler
>>poppler>>0.8.7
cpe:2.3:a:poppler:poppler:0.8.7:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.9.0
cpe:2.3:a:poppler:poppler:0.9.0:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.9.1
cpe:2.3:a:poppler:poppler:0.9.1:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.9.2
cpe:2.3:a:poppler:poppler:0.9.2:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.9.3
cpe:2.3:a:poppler:poppler:0.9.3:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.10.0
cpe:2.3:a:poppler:poppler:0.10.0:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.10.1
cpe:2.3:a:poppler:poppler:0.10.1:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.10.2
cpe:2.3:a:poppler:poppler:0.10.2:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.10.3
cpe:2.3:a:poppler:poppler:0.10.3:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.10.4
cpe:2.3:a:poppler:poppler:0.10.4:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.10.5
cpe:2.3:a:poppler:poppler:0.10.5:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.10.6
cpe:2.3:a:poppler:poppler:0.10.6:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.10.7
cpe:2.3:a:poppler:poppler:0.10.7:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.11.0
cpe:2.3:a:poppler:poppler:0.11.0:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.11.1
cpe:2.3:a:poppler:poppler:0.11.1:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.11.2
cpe:2.3:a:poppler:poppler:0.11.2:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.11.3
cpe:2.3:a:poppler:poppler:0.11.3:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.12.0
cpe:2.3:a:poppler:poppler:0.12.0:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.12.1
cpe:2.3:a:poppler:poppler:0.12.1:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.12.2
cpe:2.3:a:poppler:poppler:0.12.2:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.12.3
cpe:2.3:a:poppler:poppler:0.12.3:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.12.4
cpe:2.3:a:poppler:poppler:0.12.4:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.13.0
cpe:2.3:a:poppler:poppler:0.13.0:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.13.1
cpe:2.3:a:poppler:poppler:0.13.1:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.13.2
cpe:2.3:a:poppler:poppler:0.13.2:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.13.3
cpe:2.3:a:poppler:poppler:0.13.3:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.13.4
cpe:2.3:a:poppler:poppler:0.13.4:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.14.0
cpe:2.3:a:poppler:poppler:0.14.0:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.14.1
cpe:2.3:a:poppler:poppler:0.14.1:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.14.2
cpe:2.3:a:poppler:poppler:0.14.2:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.14.3
cpe:2.3:a:poppler:poppler:0.14.3:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.14.4
cpe:2.3:a:poppler:poppler:0.14.4:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.14.5
cpe:2.3:a:poppler:poppler:0.14.5:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.15.0
cpe:2.3:a:poppler:poppler:0.15.0:*:*:*:*:*:*:*
poppler
poppler
>>poppler>>0.15.1
cpe:2.3:a:poppler:poppler:0.15.1:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-20Primarynvd@nist.gov
CWE ID: CWE-20
Type: Primary
Source: nvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
http://cgit.freedesktop.org/poppler/poppler/commit/?id=bf2055088a3a2d3bb3d3c37d464954ec1a25771fsecalert@redhat.com
N/A
http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049392.htmlsecalert@redhat.com
N/A
http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049523.htmlsecalert@redhat.com
N/A
http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049545.htmlsecalert@redhat.com
N/A
http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.htmlsecalert@redhat.com
N/A
http://secunia.com/advisories/42357secalert@redhat.com
N/A
http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.571720secalert@redhat.com
N/A
http://www.mandriva.com/security/advisories?name=MDVSA-2010:231secalert@redhat.com
N/A
http://www.openwall.com/lists/oss-security/2010/10/04/6secalert@redhat.com
N/A
http://www.redhat.com/support/errata/RHSA-2010-0859.htmlsecalert@redhat.com
N/A
http://www.ubuntu.com/usn/USN-1005-1secalert@redhat.com
N/A
https://bugzilla.redhat.com/show_bug.cgi?id=639356secalert@redhat.com
N/A
http://cgit.freedesktop.org/poppler/poppler/commit/?id=bf2055088a3a2d3bb3d3c37d464954ec1a25771faf854a3a-2127-422b-91ae-364da2661108
N/A
http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049392.htmlaf854a3a-2127-422b-91ae-364da2661108
N/A
http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049523.htmlaf854a3a-2127-422b-91ae-364da2661108
N/A
http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049545.htmlaf854a3a-2127-422b-91ae-364da2661108
N/A
http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.htmlaf854a3a-2127-422b-91ae-364da2661108
N/A
http://secunia.com/advisories/42357af854a3a-2127-422b-91ae-364da2661108
N/A
http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.571720af854a3a-2127-422b-91ae-364da2661108
N/A
http://www.mandriva.com/security/advisories?name=MDVSA-2010:231af854a3a-2127-422b-91ae-364da2661108
N/A
http://www.openwall.com/lists/oss-security/2010/10/04/6af854a3a-2127-422b-91ae-364da2661108
N/A
http://www.redhat.com/support/errata/RHSA-2010-0859.htmlaf854a3a-2127-422b-91ae-364da2661108
N/A
http://www.ubuntu.com/usn/USN-1005-1af854a3a-2127-422b-91ae-364da2661108
N/A
https://bugzilla.redhat.com/show_bug.cgi?id=639356af854a3a-2127-422b-91ae-364da2661108
N/A
Hyperlink: http://cgit.freedesktop.org/poppler/poppler/commit/?id=bf2055088a3a2d3bb3d3c37d464954ec1a25771f
Source: secalert@redhat.com
Resource: N/A
Hyperlink: http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049392.html
Source: secalert@redhat.com
Resource: N/A
Hyperlink: http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049523.html
Source: secalert@redhat.com
Resource: N/A
Hyperlink: http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049545.html
Source: secalert@redhat.com
Resource: N/A
Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html
Source: secalert@redhat.com
Resource: N/A
Hyperlink: http://secunia.com/advisories/42357
Source: secalert@redhat.com
Resource: N/A
Hyperlink: http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.571720
Source: secalert@redhat.com
Resource: N/A
Hyperlink: http://www.mandriva.com/security/advisories?name=MDVSA-2010:231
Source: secalert@redhat.com
Resource: N/A
Hyperlink: http://www.openwall.com/lists/oss-security/2010/10/04/6
Source: secalert@redhat.com
Resource: N/A
Hyperlink: http://www.redhat.com/support/errata/RHSA-2010-0859.html
Source: secalert@redhat.com
Resource: N/A
Hyperlink: http://www.ubuntu.com/usn/USN-1005-1
Source: secalert@redhat.com
Resource: N/A
Hyperlink: https://bugzilla.redhat.com/show_bug.cgi?id=639356
Source: secalert@redhat.com
Resource: N/A
Hyperlink: http://cgit.freedesktop.org/poppler/poppler/commit/?id=bf2055088a3a2d3bb3d3c37d464954ec1a25771f
Source: af854a3a-2127-422b-91ae-364da2661108
Resource: N/A
Hyperlink: http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049392.html
Source: af854a3a-2127-422b-91ae-364da2661108
Resource: N/A
Hyperlink: http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049523.html
Source: af854a3a-2127-422b-91ae-364da2661108
Resource: N/A
Hyperlink: http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049545.html
Source: af854a3a-2127-422b-91ae-364da2661108
Resource: N/A
Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html
Source: af854a3a-2127-422b-91ae-364da2661108
Resource: N/A
Hyperlink: http://secunia.com/advisories/42357
Source: af854a3a-2127-422b-91ae-364da2661108
Resource: N/A
Hyperlink: http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.571720
Source: af854a3a-2127-422b-91ae-364da2661108
Resource: N/A
Hyperlink: http://www.mandriva.com/security/advisories?name=MDVSA-2010:231
Source: af854a3a-2127-422b-91ae-364da2661108
Resource: N/A
Hyperlink: http://www.openwall.com/lists/oss-security/2010/10/04/6
Source: af854a3a-2127-422b-91ae-364da2661108
Resource: N/A
Hyperlink: http://www.redhat.com/support/errata/RHSA-2010-0859.html
Source: af854a3a-2127-422b-91ae-364da2661108
Resource: N/A
Hyperlink: http://www.ubuntu.com/usn/USN-1005-1
Source: af854a3a-2127-422b-91ae-364da2661108
Resource: N/A
Hyperlink: https://bugzilla.redhat.com/show_bug.cgi?id=639356
Source: af854a3a-2127-422b-91ae-364da2661108
Resource: N/A
Change History
0Changes found
Details not found