Mandrake Linux Security Advisory : gv (MDKSA-2002:069)

This script is Copyright (C) 2004-2013 Tenable Network Security, Inc.


Synopsis :

The remote Mandrake Linux host is missing one or more security
updates.

Description :

A buffer overflow was discovered in gv versions 3.5.8 and earlier by
Zen Parse. The problem is triggered by scanning a file and can be
exploited by an attacker sending a malformed PostScript or PDF file.
This would result in arbitrary code being executed with the privilege
of the user viewing the file. ggv uses code derived from gv and has
the same vulnerability. These updates provide patched versions of gv
and ggv to fix the vulnerabilities.

Solution :

Update the affected ggv and / or gv packages.

Risk factor :

Medium / CVSS Base Score : 4.6
(CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P)

Family: Mandriva Local Security Checks

Nessus Plugin ID: 13969 (mandrake_MDKSA-2002-069.nasl)

Bugtraq ID:

CVE ID: CVE-2002-0838

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now