CVE-2005-3627

EPSS 4.33% · P89 Updated Feb 27, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2005-3627

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Stream.cc in Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to modify memory and possibly execute arbitrary code via a DCTDecode stream with (1) a large "number of components" value that is not checked by DCTStream::readBaselineSOF or DCTStream::readProgressiveSOF, (2) a large "Huffman table index" value that is not checked by DCTStream::readHuffmanTables, and (3) certain uses of the scanInfo.numComps value by DCTStream::readScanInfo.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

KPdf和KWord多个缓冲区溢出漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

KPdf是kdegraphics软件包中捆绑的基于KDE的PDF浏览器，KWord是koffice软件包中捆绑的基于KDE的文字处理器。 KPdf和KWord都包含有用于处理PDF文件的Xpdf代码，该Xpdf代码中存在几个堆溢出和整数溢出。如果攻击者能够诱骗用户使用Kpdf或KWord打开特制的PDF文件的话，就可以以受影响应用程序的权限执行任意代码。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2005-3627

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2005-3627

Please Login to view more intelligence information

http://www.redhat.com/archives/fedora-announce-list/2006-January/msg00011.htmlx_refsource_CONFIRM
http://www.kde.org/info/security/advisory-20051207-2.txtx_refsource_CONFIRM
http://www.redhat.com/archives/fedora-announce-list/2006-January/msg00010.htmlx_refsource_CONFIRM
http://secunia.com/advisories/18554third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18679third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18517third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18380third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18414third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/19230third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18312third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18642third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18389third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18387third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18147third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18349third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18329third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18463third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18303third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18375third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18334third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18373third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18385third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18423third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18425third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18313third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18582third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18534third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18428third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18644third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18338third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18674third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18398third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18908third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/16143vdb-entryx_refsource_BID
http://secunia.com/advisories/18913third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18416third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/19377third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18335third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18332third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18448third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18436third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18675third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/25729third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18407third-party-advisoryx_refsource_SECUNIA
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102972-1vendor-advisoryx_refsource_SUNALERT
http://www.debian.org/security/2006/dsa-962vendor-advisoryx_refsource_DEBIAN
http://www.debian.org/security/2005/dsa-938vendor-advisoryx_refsource_DEBIAN
http://www.debian.org/security/2005/dsa-937vendor-advisoryx_refsource_DEBIAN
http://www.debian.org/security/2006/dsa-936vendor-advisoryx_refsource_DEBIAN
http://www.debian.org/security/2005/dsa-940vendor-advisoryx_refsource_DEBIAN
http://www.debian.org/security/2005/dsa-932vendor-advisoryx_refsource_DEBIAN
http://www.debian.org/security/2005/dsa-931vendor-advisoryx_refsource_DEBIAN
http://www.debian.org/security/2006/dsa-950vendor-advisoryx_refsource_DEBIAN
http://www.debian.org/security/2006/dsa-961vendor-advisoryx_refsource_DEBIAN
http://www.trustix.org/errata/2006/0002/vendor-advisoryx_refsource_TRUSTIX
https://usn.ubuntu.com/236-1/vendor-advisoryx_refsource_UBUNTU
http://www.securityfocus.com/archive/1/427990/100/0/threadedvendor-advisoryx_refsource_FEDORA
http://www.vupen.com/english/advisories/2007/2280vdb-entryx_refsource_VUPEN
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.15/SCOSA-2006.15.txtvendor-advisoryx_refsource_SCO
ftp://patches.sgi.com/support/free/security/advisories/20051201-01-Uvendor-advisoryx_refsource_SGI
ftp://patches.sgi.com/support/free/security/advisories/20060101-01-Uvendor-advisoryx_refsource_SGI
ftp://patches.sgi.com/support/free/security/advisories/20060201-01-Uvendor-advisoryx_refsource_SGI
http://www.vupen.com/english/advisories/2006/0047vdb-entryx_refsource_VUPEN
http://www.gentoo.org/security/en/glsa/glsa-200601-17.xmlvendor-advisoryx_refsource_GENTOO
http://www.mandriva.com/security/advisories?name=MDKSA-2006:004vendor-advisoryx_refsource_MANDRIVA
http://www.mandriva.com/security/advisories?name=MDKSA-2006:003vendor-advisoryx_refsource_MANDRIVA
http://www.redhat.com/support/errata/RHSA-2006-0163.htmlvendor-advisoryx_refsource_REDHAT
http://www.mandriva.com/security/advisories?name=MDKSA-2006:010vendor-advisoryx_refsource_MANDRAKE
http://www.mandriva.com/security/advisories?name=MDKSA-2006:008vendor-advisoryx_refsource_MANDRIVA
http://www.mandriva.com/security/advisories?name=MDKSA-2006:005vendor-advisoryx_refsource_MANDRIVA
http://www.mandriva.com/security/advisories?name=MDKSA-2006:012vendor-advisoryx_refsource_MANDRIVA
http://www.mandriva.com/security/advisories?name=MDKSA-2006:011vendor-advisoryx_refsource_MANDRIVA
http://rhn.redhat.com/errata/RHSA-2006-0177.htmlvendor-advisoryx_refsource_REDHAT
http://www.gentoo.org/security/en/glsa/glsa-200601-02.xmlvendor-advisoryx_refsource_GENTOO
http://www.redhat.com/support/errata/RHSA-2006-0160.htmlvendor-advisoryx_refsource_REDHAT
The Slackware Linux Project: Slackware Security Advisoriesvendor-advisoryx_refsource_SLACKWARE
http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.472683vendor-advisoryx_refsource_SLACKWARE
http://www.redhat.com/archives/fedora-announce-list/2006-January/msg00031.htmlvendor-advisoryx_refsource_FEDORA
http://www.redhat.com/archives/fedora-announce-list/2006-January/msg00030.htmlvendor-advisoryx_refsource_FEDORA
http://www.securityfocus.com/archive/1/427053/100/0/threadedvendor-advisoryx_refsource_FEDORA
http://lists.suse.com/archive/suse-security-announce/2006-Jan/0001.htmlvendor-advisoryx_refsource_SUSE
https://exchange.xforce.ibmcloud.com/vulnerabilities/24025vdb-entryx_refsource_XF
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10200vdb-entrysignaturex_refsource_OVAL
https://exchange.xforce.ibmcloud.com/vulnerabilities/24024vdb-entryx_refsource_XF
https://nvd.nist.gov/vuln/detail/CVE-2005-3627

Same Patch Batch · n/a · 2006-01-06 · 29 CVEs total

CVE-2005-4625		某些显示适配器的驱动拒绝服务攻击漏洞
CVE-2005-3654		Blue Coat Systems WinProxy Telnet远程拒绝服务攻击漏洞
CVE-2006-0104		TinyPHPForum多个目录遍历漏洞
CVE-2006-0103		TinyPHPForum 信息泄露漏洞
CVE-2006-0102		TinyPHPForum 跨站脚本攻击漏洞
CVE-2006-0101		sBLOG 0.7.1 多个跨站脚本攻击漏洞
CVE-2006-0100		NicoFTP 缓冲区溢出漏洞
CVE-2006-0099		Valdersoft Shopping Cart远程文件包含漏洞
CVE-2006-0098		OpenBSD DEV/FD任意文件访问漏洞
CVE-2006-0097		PHP MySQL_Connect远程溢出漏洞
CVE-2006-0096		Linux Kernel SDLA IOCTL未经授权的本地固件访问漏洞
CVE-2006-0095		Linux Kernel DM-Crypt本地信息泄露漏洞
CVE-2005-4627		GMailSite跨站脚本攻击漏洞
CVE-2005-4626		Recruitment Software 访问控制漏洞
CVE-2005-3357		Apache Mod_SSL可定制错误文档拒绝服务漏洞
CVE-2005-4624		PTnet IRCD远程拒绝服务漏洞
CVE-2005-4623		EFileGo多个输入验证漏洞
CVE-2005-4622		EFileGo目录遍历漏洞
CVE-2005-4621		VBulletin Profile.PHP跨站脚本攻击漏洞
CVE-2005-4620		RARLAB WinRAR命令行处理溢出漏洞

Showing top 20 of 29 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2005-3627

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2005-3627

I. Basic Information for CVE-2005-3627

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2005-3627

III. Intelligence Information for CVE-2005-3627

Same Patch Batch · n/a · 2006-01-06 · 29 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2005-3627

Leave a comment