This script is Copyright (C) 2009-2012 Tenable Network Security, Inc.
The remote SuSE 9 host is missing a security-related patch.
A number of vulnerabilities have been found in the xpdf code used by
cups which could be exploited, potentially remotely, by tricking the
user to print a specially crafted PDF file.
The vulnerabilities are in the source code file Stream.cc and may
allow execution of arbitrary code with the privileges of the user
viewing the PDF. Specifically, these are an array indexing error
leading to memory corruption (CVE-2007-4352), a possible integer
overflow causing to a buffer overflow (CVE-2007-5392) and a boundary
check error that can also cause a buffer overflow. (CVE-2007-5393)
See also :
Apply YOU patch number 11965.
Risk factor :
High / CVSS Base Score : 9.3