VDB
DEBIAN-CVE-2006-0301
DEBIAN-CVE-2006-0301
PUBLISHED
CVSS 9.300000190734863 CRITICAL
Heap-based buffer overflow in Splash.cc in xpdf, as used in other products such as (1) poppler, (2) kdegraphics, (3) gpdf, (4) pdfkit.framework, and others, allows attackers to cause a denial of service and possibly execute arbitrary code via crafted splash images that produce certain values that exceed the width or height of the associated bitmap.
Risk Scores
CVSS 4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:11 | poppler | 0, 0, 0 |
| Debian:14 | libextractor | 0, 0, 0 |
| Debian:11 | xpdf | 0, 0, 0 |
| Debian:13 | libextractor | 0, 0, 0 |
| Debian:12 | poppler | 0, 0, 0 |
| Debian:12 | xpdf | 0, 0, 0 |
| Debian:13 | poppler | 0, 0, 0 |
| Debian:11 | libextractor | 0, 0, 0 |
| Debian:14 | poppler | 0, 0, 0 |
| Debian:13 | xpdf | 0, 0, 0 |
| Debian:12 | libextractor | 0, 0, 0 |
| Debian:14 | xpdf | 0, 0, 0 |
Timeline
- Jan 30, 2006 CVE Published
- Apr 28, 2026 CVE Updated