National Vulnerability Database (NVD) National Vulnerability Database (CVE-2009-1181)

National Cyber Awareness System

Vulnerability Summary for CVE-2009-1181

Original release date:04/23/2009

Last revised:01/18/2012

Source: US-CERT/NIST

Overview

The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to cause a denial of service (crash) via a crafted PDF file that triggers a NULL pointer dereference.

Impact

CVSS Severity (version 2.0):

CVSS v2 Base Score:4.3 (MEDIUM) (AV:N/AC:M/Au:N/C:N/I:N/A:P) (legend)

Impact Subscore: 2.9

Exploitability Subscore: 8.6

CVSS Version 2 Metrics:

Access Vector: Network exploitable; Victim must voluntarily interact with attack mechanism

Access Complexity: Medium

Authentication: Not required to exploit

Impact Type:Allows disruption of serviceUnknown

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

US-CERT Vulnerability Note: VU#196617

Name: VU#196617

Hyperlink:http://www.kb.cert.org/vuls/id/196617

External Source: VUPEN

Name: ADV-2009-1076

Type: Advisory; Patch Information

Hyperlink:http://www.vupen.com/english/advisories/2009/1076

External Source: VUPEN

Name: ADV-2009-1066

Type: Advisory; Patch Information

Hyperlink:http://www.vupen.com/english/advisories/2009/1066

External Source: VUPEN

Name: ADV-2009-1065

Type: Advisory; Patch Information

Hyperlink:http://www.vupen.com/english/advisories/2009/1065

External Source: BID

Name: 34568

Type: Patch Information

Hyperlink:http://www.securityfocus.com/bid/34568

External Source: REDHAT

Name: RHSA-2009:0431

Type: Patch Information

Hyperlink:http://www.redhat.com/support/errata/RHSA-2009-0431.html

External Source: REDHAT

Name: RHSA-2009:0430

Type: Patch Information

Hyperlink:http://www.redhat.com/support/errata/RHSA-2009-0430.html

External Source: REDHAT

Name: RHSA-2009:0429

Type: Patch Information

Hyperlink:http://www.redhat.com/support/errata/RHSA-2009-0429.html

External Source: DEBIAN

Name: DSA-1793

Type: Patch Information

Hyperlink:http://www.debian.org/security/2009/dsa-1793

External Source: DEBIAN

Name: DSA-1790

Type: Patch Information

Hyperlink:http://www.debian.org/security/2009/dsa-1790

External Source: SECUNIA

Name: 35037

Type: Advisory; Patch Information

Hyperlink:http://secunia.com/advisories/35037

External Source: CONFIRM

Name: http://poppler.freedesktop.org/releases.html

Type: Advisory; Patch Information

Hyperlink:http://poppler.freedesktop.org/releases.html

External Source: FEDORA

Name: FEDORA-2009-6982

Hyperlink:https://www.redhat.com/archives/fedora-package-announce/2009-June/msg01291.html

External Source: FEDORA

Name: FEDORA-2009-6973

Hyperlink:https://www.redhat.com/archives/fedora-package-announce/2009-June/msg01277.html

External Source: FEDORA

Name: FEDORA-2009-6972

Hyperlink:https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00567.html

External Source: CONFIRM

Name: https://bugzilla.redhat.com/show_bug.cgi?id=495894

Hyperlink:https://bugzilla.redhat.com/show_bug.cgi?id=495894

External Source: VUPEN

Name: ADV-2010-1040

Type: Advisory

Hyperlink:http://www.vupen.com/english/advisories/2010/1040

External Source: VUPEN

Name: ADV-2009-1077

Type: Advisory

Hyperlink:http://www.vupen.com/english/advisories/2009/1077

External Source: SECTRACK

Name: 1022072

Hyperlink:http://www.securitytracker.com/id?1022072

External Source: REDHAT

Name: RHSA-2009:0480

Hyperlink:http://www.redhat.com/support/errata/RHSA-2009-0480.html

External Source: MANDRIVA

Name: MDVSA-2011:175

Hyperlink:http://www.mandriva.com/security/advisories?name=MDVSA-2011:175

External Source: MANDRIVA

Name: MDVSA-2010:087

Hyperlink:http://www.mandriva.com/security/advisories?name=MDVSA-2010:087

External Source: MANDRIVA

Name: MDVSA-2009:101

Hyperlink:http://www.mandriva.com/security/advisories?name=MDVSA-2009:101

External Source: SLACKWARE

Name: SSA:2009-129-01

Hyperlink:http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.578477

External Source: SECUNIA

Name: 35685

Type: Advisory

Hyperlink:http://secunia.com/advisories/35685

External Source: SECUNIA

Name: 35618

Type: Advisory

Hyperlink:http://secunia.com/advisories/35618

External Source: SECUNIA

Name: 35065

Type: Advisory

Hyperlink:http://secunia.com/advisories/35065

External Source: SECUNIA

Name: 35064

Type: Advisory

Hyperlink:http://secunia.com/advisories/35064

External Source: SECUNIA

Name: 34991

Type: Advisory

Hyperlink:http://secunia.com/advisories/34991

External Source: SECUNIA

Name: 34963

Type: Advisory

Hyperlink:http://secunia.com/advisories/34963

External Source: SECUNIA

Name: 34959

Type: Advisory

Hyperlink:http://secunia.com/advisories/34959

External Source: SECUNIA

Name: 34852

Type: Advisory

Hyperlink:http://secunia.com/advisories/34852

External Source: SECUNIA

Name: 34756

Type: Advisory

Hyperlink:http://secunia.com/advisories/34756

External Source: SECUNIA

Name: 34755

Type: Advisory

Hyperlink:http://secunia.com/advisories/34755

External Source: SECUNIA

Name: 34746

Type: Advisory

Hyperlink:http://secunia.com/advisories/34746

External Source: SECUNIA

Name: 34481

Type: Advisory

Hyperlink:http://secunia.com/advisories/34481

External Source: SECUNIA

Name: 34291

Type: Advisory

Hyperlink:http://secunia.com/advisories/34291

External Source: REDHAT

Name: RHSA-2009:0458

Hyperlink:http://rhn.redhat.com/errata/RHSA-2009-0458.html

External Source: OVAL

Name: oval:org.mitre.oval:def:9683

Hyperlink:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:9683

External Source: SUSE

Name: SUSE-SR:2009:012

Hyperlink:http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html

External Source: SUSE

Name: SUSE-SR:2009:010

Hyperlink:http://lists.opensuse.org/opensuse-security-announce/2009-05/msg00000.html

External Source: SUSE

Name: SUSE-SA:2009:024

Hyperlink:http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00011.html

References to Check Content

Identifier:oval:org.mitre.oval:def:9683

Check System:http://oval.mitre.org/XMLSchema/oval-definitions-5

Hyperlink:http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:9683

Vulnerable software and versions

Configuration 1

* cpe:/a:foolabs:xpdf:3.02 and previous versions

* cpe:/a:foolabs:xpdf:3.00

* cpe:/a:foolabs:xpdf:3.01

* cpe:/a:foolabs:xpdf:2.03

* cpe:/a:foolabs:xpdf:2.02

* cpe:/a:foolabs:xpdf:2.01

* cpe:/a:foolabs:xpdf:2.00

* cpe:/a:foolabs:xpdf:1.01

* cpe:/a:foolabs:xpdf:1.00a

* cpe:/a:foolabs:xpdf:1.00

* cpe:/a:foolabs:xpdf:0.93c

* cpe:/a:foolabs:xpdf:0.93b

* cpe:/a:foolabs:xpdf:0.93a

* cpe:/a:foolabs:xpdf:0.93

* cpe:/a:foolabs:xpdf:0.92e

* cpe:/a:foolabs:xpdf:0.92d

* cpe:/a:foolabs:xpdf:0.92c

* cpe:/a:foolabs:xpdf:0.92b

* cpe:/a:foolabs:xpdf:0.92a

* cpe:/a:foolabs:xpdf:0.92

* cpe:/a:foolabs:xpdf:0.91c

* cpe:/a:foolabs:xpdf:0.91b

* cpe:/a:foolabs:xpdf:0.91a

* cpe:/a:foolabs:xpdf:0.91

* cpe:/a:foolabs:xpdf:0.90

* cpe:/a:foolabs:xpdf:0.80

* cpe:/a:foolabs:xpdf:0.7a

* cpe:/a:foolabs:xpdf:0.7

* cpe:/a:foolabs:xpdf:0.6

* cpe:/a:foolabs:xpdf:0.5a

* cpe:/a:foolabs:xpdf:0.5

* cpe:/a:foolabs:xpdf:0.4

* cpe:/a:foolabs:xpdf:0.3

* cpe:/a:foolabs:xpdf:0.2

Configuration 2

* cpe:/a:poppler:poppler:0.10.5 and previous versions

* cpe:/a:poppler:poppler:0.10.4

* cpe:/a:poppler:poppler:0.10.3

* cpe:/a:poppler:poppler:0.10.2

* cpe:/a:poppler:poppler:0.10.1

* cpe:/a:poppler:poppler:0.10.0

* cpe:/a:poppler:poppler:0.1.2

* cpe:/a:poppler:poppler:0.1.1

* cpe:/a:poppler:poppler:0.1

* cpe:/a:poppler:poppler:0.2.0

* cpe:/a:poppler:poppler:0.3.0

* cpe:/a:poppler:poppler:0.3.1

* cpe:/a:poppler:poppler:0.3.2

* cpe:/a:poppler:poppler:0.3.3

* cpe:/a:poppler:poppler:0.4.0

* cpe:/a:poppler:poppler:0.4.1

* cpe:/a:poppler:poppler:0.4.2

* cpe:/a:poppler:poppler:0.4.3

* cpe:/a:poppler:poppler:0.4.4

* cpe:/a:poppler:poppler:0.5.0

* cpe:/a:poppler:poppler:0.5.1

* cpe:/a:poppler:poppler:0.5.2

* cpe:/a:poppler:poppler:0.5.3

* cpe:/a:poppler:poppler:0.5.4

* cpe:/a:poppler:poppler:0.5.9

* cpe:/a:poppler:poppler:0.5.90

* cpe:/a:poppler:poppler:0.5.91

* cpe:/a:poppler:poppler:0.6.0

* cpe:/a:poppler:poppler:0.6.1

* cpe:/a:poppler:poppler:0.6.2

* cpe:/a:poppler:poppler:0.6.3

* cpe:/a:poppler:poppler:0.6.4

* cpe:/a:poppler:poppler:0.7.0

* cpe:/a:poppler:poppler:0.7.1

* cpe:/a:poppler:poppler:0.7.2

* cpe:/a:poppler:poppler:0.7.3

* cpe:/a:poppler:poppler:0.8.0

* cpe:/a:poppler:poppler:0.8.1

* cpe:/a:poppler:poppler:0.8.2

* cpe:/a:poppler:poppler:0.8.3

* cpe:/a:poppler:poppler:0.8.4

* cpe:/a:poppler:poppler:0.8.5

* cpe:/a:poppler:poppler:0.8.6

* cpe:/a:poppler:poppler:0.8.7

* cpe:/a:poppler:poppler:0.9.0

* cpe:/a:poppler:poppler:0.9.1

* cpe:/a:poppler:poppler:0.9.2

* cpe:/a:poppler:poppler:0.9.3

Configuration 3

* cpe:/a:apple:cups:1.3.9 and previous versions

* cpe:/a:apple:cups:1.3.6

* cpe:/a:apple:cups:1.3.0

* cpe:/a:apple:cups:1.3.1

* cpe:/a:apple:cups:1.3.11

* cpe:/a:apple:cups:1.3.2

* cpe:/a:apple:cups:1.3.3

* cpe:/a:apple:cups:1.3.4

* cpe:/a:apple:cups:1.3.5

* cpe:/a:apple:cups:1.3.8

* cpe:/a:apple:cups:1.3.7

* cpe:/a:apple:cups:1.3.10

* cpe:/a:apple:cups:1.2.1

* cpe:/a:apple:cups:1.2.0

* cpe:/a:apple:cups:1.2.5

* cpe:/a:apple:cups:1.2.4

* cpe:/a:apple:cups:1.2.3

* cpe:/a:apple:cups:1.2.2

* cpe:/a:apple:cups:1.2.6

* cpe:/a:apple:cups:1.2.7

* cpe:/a:apple:cups:1.2.8

* cpe:/a:apple:cups:1.2.9

* cpe:/a:apple:cups:1.2.10

* cpe:/a:apple:cups:1.2.11

* cpe:/a:apple:cups:1.2.12

* cpe:/a:apple:cups:1.1

* cpe:/a:apple:cups:1.1.1

* cpe:/a:apple:cups:1.1.5-1

* cpe:/a:apple:cups:1.1.5-2

* cpe:/a:apple:cups:1.1.6

* cpe:/a:apple:cups:1.1.6-1

* cpe:/a:apple:cups:1.1.2

* cpe:/a:apple:cups:1.1.3

* cpe:/a:apple:cups:1.1.4

* cpe:/a:apple:cups:1.1.5

* cpe:/a:apple:cups:1.1.9

* cpe:/a:apple:cups:1.1.9-1

* cpe:/a:apple:cups:1.1.10-1

* cpe:/a:apple:cups:1.1.10

* cpe:/a:apple:cups:1.1.6-3

* cpe:/a:apple:cups:1.1.6-2

* cpe:/a:apple:cups:1.1.8

* cpe:/a:apple:cups:1.1.7

* cpe:/a:apple:cups:1.1.16

* cpe:/a:apple:cups:1.1.15

* cpe:/a:apple:cups:1.1.18

* cpe:/a:apple:cups:1.1.17

* cpe:/a:apple:cups:1.1.12

* cpe:/a:apple:cups:1.1.11

* cpe:/a:apple:cups:1.1.14

* cpe:/a:apple:cups:1.1.13

* cpe:/a:apple:cups:1.1.19:rc2

* cpe:/a:apple:cups:1.1.19:rc3

* cpe:/a:apple:cups:1.1.19

* cpe:/a:apple:cups:1.1.19:rc1

* cpe:/a:apple:cups:1.1.20

* cpe:/a:apple:cups:1.1.20:rc1

* cpe:/a:apple:cups:1.1.19:rc4

* cpe:/a:apple:cups:1.1.19:rc5

* cpe:/a:apple:cups:1.1.20:rc4

* cpe:/a:apple:cups:1.1.20:rc5

* cpe:/a:apple:cups:1.1.20:rc2

* cpe:/a:apple:cups:1.1.20:rc3

* cpe:/a:apple:cups:1.1.21:rc1

* cpe:/a:apple:cups:1.1.21

* cpe:/a:apple:cups:1.1.20:rc6

* cpe:/a:apple:cups:1.1.21:rc2

* cpe:/a:apple:cups:1.1.23:rc1

* cpe:/a:apple:cups:1.1.22

* cpe:/a:apple:cups:1.1.22:rc2

* cpe:/a:apple:cups:1.1.22:rc1

* cpe:/a:apple:cups:1.1.23

* Denotes Vulnerable Software

Technical Details

Vulnerability Type (View All)

Resource Management Errors (CWE-399)

CVE Standard Vulnerability Entry:http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1181