Mandrake Linux Security Advisory : xpdf (MDKSA-2003:071-1)
High Nessus Plugin ID 14054
SynopsisThe remote Mandrake Linux host is missing a security update.
DescriptionMartyn Gilmore discovered flaws in various PDF viewers, including xpdf. An attacker could place malicious external hyperlinks in a document that, if followed, could execute arbitary shell commands with the privileges of the person viewing the PDF document.
New packages are available as the previous patches that had been applied did not correct all possible ways of exploiting this issue.
SolutionUpdate the affected xpdf package.