1. Home
  2. CVE Database
  3. CVE-2005-0206
HIGH · 7.5

CVE-2005-0206

The patch for integer overflow vulnerabilities in Xpdf 2.0 and 3.0 (CVE-2004-0888) is incomplete for 64-bit architectures on certain Linux distributions such as Red Hat, which could leave Xpdf users e...

Vulnerability Description

The patch for integer overflow vulnerabilities in Xpdf 2.0 and 3.0 (CVE-2004-0888) is incomplete for 64-bit architectures on certain Linux distributions such as Red Hat, which could leave Xpdf users exposed to the original vulnerabilities.

CVSS Score

7.5

HIGH

AV:N/AC:L/Au:N/C:P/I:P/A:P
Confidentiality
PARTIAL
Integrity
PARTIAL
Availability
PARTIAL

Affected Products

VendorProductVersions
AsciiPtex3.1.4
CstexCstetex2.0.2
Easy Software ProductsCups1.0.4
GnomeGpdf0.110
KdeKoffice1.3
KdeKpdf3.2
PdftohtmlPdftohtml0.32a
SgiPropack3.0
TetexTetex1.0.6
XpdfXpdf0.90
SgiAdvanced Linux Environment3.0
DebianDebian Linux3.0
GentooLinuxAll versions
KdeKde3.2
MandrakesoftMandrake Linux Corporate Server3.0
RedhatEnterprise Linux2.1
RedhatEnterprise Linux Desktop3.0
RedhatFedora Corecore_1.0
RedhatLinux9.0
RedhatLinux Advanced Workstation2.1

References

FAQ

What is CVE-2005-0206?

CVE-2005-0206 is a vulnerability with a CVSS score of 7.5 (HIGH). The patch for integer overflow vulnerabilities in Xpdf 2.0 and 3.0 (CVE-2004-0888) is incomplete for 64-bit architectures on certain Linux distributions such as Red Hat, which could leave Xpdf users e...

How severe is CVE-2005-0206?

CVE-2005-0206 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2005-0206?

Check the references section above for vendor advisories and patch information. Affected products include: Ascii Ptex, Cstex Cstetex, Easy Software Products Cups, Gnome Gpdf, Kde Koffice.