Mandrake Linux Security Advisory : xpdf (MDKSA-2006:032)

This script is Copyright (C) 2006-2013 Tenable Network Security, Inc.


Synopsis :

The remote Mandrake Linux host is missing a security update.

Description :

Heap-based buffer overflow in Splash.cc in xpdf allows attackers to
cause a denial of service and possibly execute arbitrary code via
crafted splash images that produce certain values that exceed the
width or height of the associated bitmap.

The updated packages have been patched to correct this issue.

Solution :

Update the affected xpdf package.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)

Family: Mandriva Local Security Checks

Nessus Plugin ID: 20853 (mandrake_MDKSA-2006-032.nasl)

Bugtraq ID:

CVE ID: CVE-2006-0301

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now