Home > Vulnerability Database > CVE-2005-3628

Mend.io Vulnerability Database

CVE-2005-3628

Date: January 23, 2006

Buffer overflow in the JBIG2Bitmap::JBIG2Bitmap function in JBIG2Stream.cc in Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to modify memory and possibly execute arbitrary code via unknown attack vectors.

Severity Score

7.3

Related Resources (41)

Url: http://secunia.com/advisories/18908

Url: http://www.debian.org/security/2005/dsa-940

Url: http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.474747

Url: https://nvd.nist.gov/vuln/detail/CVE-2005-3628

Url: http://www.debian.org/security/2006/dsa-962

Url: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10287

Url: http://secunia.com/advisories/18407

Url: http://www.debian.org/security/2006/dsa-961

Url: http://secunia.com/advisories/18428

Url: http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.472683

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2005-3628

Url: http://secunia.com/advisories/18147

Url: http://secunia.com/advisories/18389

Url: http://www.securityfocus.com/archive/1/427990/100/0/threaded

Url: http://secunia.com/advisories/18398

Url: http://lists.suse.com/archive/suse-security-announce/2006-Jan/0001.html

Url: http://www.mandriva.com/security/advisories?name=MDKSA-2006:010

Url: http://www.mandriva.com/security/advisories?name=MDKSA-2006:011

Url: http://www.mandriva.com/security/advisories?name=MDKSA-2006:012

Url: ftp://patches.sgi.com/support/free/security/advisories/20060201-01-U

Url: http://www.redhat.com/support/errata/RHSA-2006-0160.html

Url: http://www.debian.org/security/2005/dsa-932

Url: http://www.debian.org/security/2005/dsa-931

Url: http://secunia.com/advisories/18913

Url: http://www.debian.org/security/2006/dsa-950

Url: http://secunia.com/advisories/18416

Url: http://secunia.com/advisories/18436

Url: http://www.debian.org/security/2005/dsa-938

Url: http://secunia.com/advisories/18679

Url: http://www.debian.org/security/2005/dsa-937

Url: http://secunia.com/advisories/18534

Url: http://secunia.com/advisories/18674

Url: http://www.debian.org/security/2006/dsa-936

Url: http://secunia.com/advisories/18675

Url: http://secunia.com/advisories/18387

Url: http://secunia.com/advisories/18582

Url: http://secunia.com/advisories/18385

Url: http://secunia.com/advisories/19230

Url: http://secunia.com/advisories/18380

Url: http://www.securityfocus.com/archive/1/427053/100/0/threaded

Url: https://www.mend.io/vulnerability-database/CVE-2005-3628

Severity Score

7.3

CVSS v3.1

Base Score:	7.3
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	LOW
Availability (A):	LOW

CVSS v2

Base Score:	7.5
Access Vector (AV):	NETWORK
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	PARTIAL
Availability (A):	PARTIAL
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2005-3628

Date: January 23, 2006

Severity Score

Related Resources (41)

Severity Score

CVSS v3.1

CVSS v2

Do you need more information?