Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Fedora Local Security Checks >> Fedora Core 2 2004-572: xpdf


Vulnerability Assessment Details

Fedora Core 2 2004-572: xpdf

Vulnerability Assessment Summary
Check for the version of the xpdf package

Detailed Explanation for this Vulnerability Assessment

The remote host is missing the patch for the advisory FEDORA-2004-572 (xpdf).

Xpdf is an X Window System based viewer for Portable Document Format
(PDF) files. Xpdf is a small and efficient program which uses
standard X fonts.

Update Information:

This package fixes a buffer overflow which permits attackers to cause
the
xpdf application to crash, and possibly to execute arbitrary code. The
Common Vulnerabilities and Exposures projects (cve.mitre.org) has
assigned
the name CVE-2004-1125 to this issue.



Solution : http://www.fedoranews.org/blog/index.php?p=228
Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2004 Tenable Network Security

Cables, Connectors

Natural Microsystems 50071 CG6000-PCI 50071 4T1/4E1 VOIP BOARD
$495.0
Natural Microsystems 50071 CG6000-PCI 50071 4T1/4E1 VOIP BOARD pictureYealink SIP-T48S Gigabit VoIP IP Phone with Power Supply - NEW &
$194.99
Yealink SIP-T48S Gigabit VoIP IP Phone with Power Supply - NEW &  picturePolycom VVX 300 VOIP Speaker Business Phone, NIB
$49.99
Polycom VVX 300 VOIP Speaker Business Phone, NIB pictureNEC ITZ-8LD-3 DT830 VoIP 12 Button Display Phone Black Used
$59.99
NEC ITZ-8LD-3 DT830 VoIP 12 Button Display Phone Black Used picture


Discussions

No Discussions have been posted on this vulnerability.