Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2009-3938

Buffer overflow in the ABWOutputDev::endWord function in poppler/ABWOutputDev.cc in Poppler (aka libpoppler) 0.10.6, 0.12.0, and possibly other versions, as used by the Abiword pdftoabw utility, allows user-assisted remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted PDF file.

  • Published: Nov 13, 2009
  • Updated: Apr 13, 2023
  • CVE: CVE-2009-3938
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 6.8
  • AV:N/AC:M/Au:N/C:P/I:P/A:P

CWEs:

Software From Fixed in
poppler / poppler 0.10.6 0.10.6.x
poppler / poppler 0.12.0 0.12.0.x