Red Hat Bugzilla – Bug 428126
CVE-2007-0104 xpdf infinite loop DoS
Last modified: 2008-01-09 07:45:02 EST
Common Vulnerabilities and Exposures assigned an identifier CVE-2007-0104 to the following vulnerability:
The Adobe PDF specification 1.3, as implemented by (a) xpdf 3.0.1 patch 2, (b) kpdf in KDE before 3.5.5, (c) poppler before 0.5.4, and other products, allows remote attackers to have an unknown impact, possibly including denial of service (infinite loop), arbitrary code execution, or memory corruption, via a PDF file with a (1) crafted catalog dictionary or (2) a crafted Pages attribute that references an invalid page tree node.
Based on our own research and information from Adobe we believe the description
of this issue isn't totally accurate (this isn't a problem with the
specification, but with specific implementations of the specification).
Basically, some implementations of the PDF spec, including acrobat reader 7.0.8,
erroneously allow page tree objects that refer back to themselves. As a result,
an infinite loop could be created. As far as we could tell, the worst a
malformed file could do is DOS the application.
We do not consider a user-assisted DoS of a client application such as xpdf be a