CVE-2005-3627 [高] | Memory Corruption（Xpdf）

Stream.cc in Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to modify memory and possibly execute arbitrary code via a DCTDecode stream with (1) a large "number of components" value that is not checked by DCTStream::readBaselineSOF or DCTStream::readProgressiveSOF, (2) a large "Huffman table index" value that is not checked by DCTStream::readHuffmanTables, and (3) certain uses of the scanInfo.numComps value by DCTStream::readScanInfo.

EDB-ID	ソース	種別	公開	リンク
—	nvd_ref	exploit_tag		Exploit-DB ↗

EDB-ID

ソース

種別

公開

リンク

—

nvd_ref

exploit_tag

Exploit-DB ↗

#	日付	旧 EPSS スコア	新 EPSS スコア	Δ（新 − 旧）
1	2026-06-25	5.44%	5.57%	+0.13%
2	2026-06-15	4.33%	5.44%	+1.11%
3	2025-03-30	—	4.33%	—

日付

旧 EPSS スコア

新 EPSS スコア

Δ（新 − 旧）

2026-06-25

5.44%

5.57%

+0.13%

2026-06-15

4.33%

5.44%

+1.11%

2025-03-30

—

4.33%

—

ベーススコア	バージョン	深刻度	ベクトル	悪用しやすさ	影響	スコアの出典
7.5	2.0	HIGH	`AV:N/AC:L/Au:N/C:P/I:P/A:P` クリックして展開アクセス経路 (AV:N) ルーティング可能なネットワーク越しに、遠隔から到達・悪用しうる。アクセスの複雑さ (AC:L) 手順が短く、再現性が高い。認証 (AU:N) 認証を経ずに攻撃を完結できる。機密性への影響 (C:P) 機密性は部分的に損なわれる。完全性への影響 (I:P) 完全性は部分的に損なわれる。可用性への影響 (A:P) 可用性は部分的に損なわれる。	10.0	6.4	[email protected]

ベーススコア

バージョン

深刻度

ベクトル

悪用しやすさ

影響

スコアの出典

7.5

2.0

HIGH

AV:N/AC:L/Au:N/C:P/I:P/A:P クリックして展開

アクセス経路 (AV:N): ルーティング可能なネットワーク越しに、遠隔から到達・悪用しうる。
アクセスの複雑さ (AC:L): 手順が短く、再現性が高い。
認証 (AU:N): 認証を経ずに攻撃を完結できる。
機密性への影響 (C:P): 機密性は部分的に損なわれる。
完全性への影響 (I:P): 完全性は部分的に損なわれる。
可用性への影響 (A:P): 可用性は部分的に損なわれる。

10.0

6.4

[email protected]

CVE-2005-3627 の OS トラッカー

vendor	priority	summary	link
`debian`	not yet assigned	CVE-2005-3627 not yet assigned priority: Debian including 4 source packages (cups, libextractor, poppler, xpdf), 20 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): resolved 20.	https://security-tracker.debian.org/tracker/CVE-2005-3627
`gentoo`	normal	CVE-2005-3627: 2 GLSA(s) (200601-02, 200601-17), 9 atom(s) (app-office/koffice, app-office/kword, …); latest impact normal.	https://bugs.gentoo.org/buglist.cgi?quicksearch=CVE-2005-3627
`redhat`	high	—	https://access.redhat.com/security/cve/CVE-2005-3627
`suse`	medium	CVE-2005-3627 severity moderate: SUSE including 15 source package names (cups-2.4.11-160000.2.2, cups-client-2.4.11-160000.2.2, …), 15 product×package rows across 4 product lines (SUSE Linux Enterprise Module for Legacy 12, SUSE Linux Enterprise Server 16.0, SUSE Linux Micro 6.0, SUSE Linux Micro 6.1): Fixed 11, Known Not Affected 4.	https://www.suse.com/security/cve/CVE-2005-3627/
`ubuntu`	medium	CVE-2005-3627 medium priority: Ubuntu including 6 source packages (cupsys, gpdf, kdegraphics, koffice, poppler, tetex-bin), 24 status rows across 4 suites (dapper, edgy, feisty, upstream): released 11, needs-triage 6, not-affected 6, DNE 1.	https://ubuntu.com/security/CVE-2005-3627

CVE-2005-3627 の影響を受けるソフトウェア／構成

ベンダー	製品	バージョン	生の CPE
xpdf	xpdf	—	cpe:2.3:a:xpdf:xpdf::::::::

CVE-2005-3627 の参考情報

URL	タグ
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.15/SCOSA-2006.15.txt
ftp://patches.sgi.com/support/free/security/advisories/20051201-01-U
ftp://patches.sgi.com/support/free/security/advisories/20060101-01-U
ftp://patches.sgi.com/support/free/security/advisories/20060201-01-U
http://lists.suse.com/archive/suse-security-announce/2006-Jan/0001.html	Patch Vendor Advisory
http://rhn.redhat.com/errata/RHSA-2006-0177.html	Patch Vendor Advisory
http://scary.beasts.org/security/CESA-2005-003.txt	Exploit Vendor Advisory
http://secunia.com/advisories/18147
http://secunia.com/advisories/18303	Patch Vendor Advisory
http://secunia.com/advisories/18312	Patch Vendor Advisory
http://secunia.com/advisories/18313	Patch Vendor Advisory
http://secunia.com/advisories/18329	Vendor Advisory
http://secunia.com/advisories/18332	Vendor Advisory
http://secunia.com/advisories/18334	Patch Vendor Advisory
http://secunia.com/advisories/18335	Patch Vendor Advisory
http://secunia.com/advisories/18338	Patch Vendor Advisory
http://secunia.com/advisories/18349	Patch Vendor Advisory
http://secunia.com/advisories/18373
http://secunia.com/advisories/18375	Vendor Advisory
http://secunia.com/advisories/18380
http://secunia.com/advisories/18385	Patch Vendor Advisory
http://secunia.com/advisories/18387	Patch Vendor Advisory
http://secunia.com/advisories/18389	Patch Vendor Advisory
http://secunia.com/advisories/18398	Patch Vendor Advisory
http://secunia.com/advisories/18407	Patch Vendor Advisory
http://secunia.com/advisories/18414
http://secunia.com/advisories/18416	Patch Vendor Advisory
http://secunia.com/advisories/18423	Patch Vendor Advisory
http://secunia.com/advisories/18425
http://secunia.com/advisories/18428
http://secunia.com/advisories/18436
http://secunia.com/advisories/18448	Patch Vendor Advisory
http://secunia.com/advisories/18463
http://secunia.com/advisories/18517	Patch Vendor Advisory
http://secunia.com/advisories/18534	Patch Vendor Advisory
http://secunia.com/advisories/18554	Patch Vendor Advisory
http://secunia.com/advisories/18582	Patch Vendor Advisory
http://secunia.com/advisories/18642	Vendor Advisory
http://secunia.com/advisories/18644	Vendor Advisory
http://secunia.com/advisories/18674	Vendor Advisory
http://secunia.com/advisories/18675	Vendor Advisory
http://secunia.com/advisories/18679	Vendor Advisory
http://secunia.com/advisories/18908	Vendor Advisory
http://secunia.com/advisories/18913
http://secunia.com/advisories/19230
http://secunia.com/advisories/19377
http://secunia.com/advisories/25729
http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.472683
http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.474747
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102972-1
http://www.debian.org/security/2005/dsa-931
http://www.debian.org/security/2005/dsa-932
http://www.debian.org/security/2005/dsa-937
http://www.debian.org/security/2005/dsa-938
http://www.debian.org/security/2005/dsa-940
http://www.debian.org/security/2006/dsa-936	Patch Vendor Advisory
http://www.debian.org/security/2006/dsa-950	Patch Vendor Advisory
http://www.debian.org/security/2006/dsa-961	Patch Vendor Advisory
http://www.debian.org/security/2006/dsa-962
http://www.gentoo.org/security/en/glsa/glsa-200601-02.xml	Patch Vendor Advisory
http://www.gentoo.org/security/en/glsa/glsa-200601-17.xml
http://www.kde.org/info/security/advisory-20051207-2.txt	Patch
http://www.mandriva.com/security/advisories?name=MDKSA-2006:003
http://www.mandriva.com/security/advisories?name=MDKSA-2006:004
http://www.mandriva.com/security/advisories?name=MDKSA-2006:005
http://www.mandriva.com/security/advisories?name=MDKSA-2006:006
http://www.mandriva.com/security/advisories?name=MDKSA-2006:008
http://www.mandriva.com/security/advisories?name=MDKSA-2006:010
http://www.mandriva.com/security/advisories?name=MDKSA-2006:011
http://www.mandriva.com/security/advisories?name=MDKSA-2006:012
http://www.redhat.com/archives/fedora-announce-list/2006-January/msg00010.html	Patch
http://www.redhat.com/archives/fedora-announce-list/2006-January/msg00011.html	Patch
http://www.redhat.com/archives/fedora-announce-list/2006-January/msg00030.html
http://www.redhat.com/archives/fedora-announce-list/2006-January/msg00031.html
http://www.redhat.com/support/errata/RHSA-2006-0160.html	Patch Vendor Advisory
http://www.redhat.com/support/errata/RHSA-2006-0163.html
http://www.securityfocus.com/archive/1/427053/100/0/threaded
http://www.securityfocus.com/archive/1/427990/100/0/threaded
http://www.securityfocus.com/bid/16143	Patch
http://www.trustix.org/errata/2006/0002/
http://www.vupen.com/english/advisories/2006/0047
http://www.vupen.com/english/advisories/2007/2280
https://exchange.xforce.ibmcloud.com/vulnerabilities/24024
https://exchange.xforce.ibmcloud.com/vulnerabilities/24025
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10200
https://usn.ubuntu.com/236-1/

URL

タグ

ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.15/SCOSA-2006.15.txt

ftp://patches.sgi.com/support/free/security/advisories/20051201-01-U

ftp://patches.sgi.com/support/free/security/advisories/20060101-01-U

ftp://patches.sgi.com/support/free/security/advisories/20060201-01-U

http://lists.suse.com/archive/suse-security-announce/2006-Jan/0001.html

Patch Vendor Advisory

http://rhn.redhat.com/errata/RHSA-2006-0177.html

Patch Vendor Advisory

http://scary.beasts.org/security/CESA-2005-003.txt

Exploit Vendor Advisory