Mandrake Linux Security Advisory : xpdf (MDKSA-2005:017)
High Nessus Plugin ID 16254
SynopsisThe remote Mandrake Linux host is missing a security update.
DescriptionA buffer overflow vulnerability was discovered in the xpdf PDF viewer, which could allow for arbitrary code execution as the user viewing a PDF file. The vulnerability exists due to insufficient bounds checking while processing a PDF file that provides malicious values in the /Encrypt /Length tag.
The updated packages have been patched to prevent these problems.
SolutionUpdate the affected xpdf package.