Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Fedora Local Security Checks >> Fedora Core 4 2005-1171: poppler


Vulnerability Assessment Details

Fedora Core 4 2005-1171: poppler

Vulnerability Assessment Summary
Check for the version of the poppler package

Detailed Explanation for this Vulnerability Assessment

The remote host is missing the patch for the advisory FEDORA-2005-1171 (poppler).

Poppler, a PDF rendering library, it's a fork of the xpdf PDF
viewer developed by Derek Noonburg of Glyph and Cog, LLC.

Update Information:

Several more flaws were discovered in Xpdf, which poppler is
based on. A possible hacker could construct a carefully crafted
PDF file that could cause poppler to crash or possibly
execute arbitrary code when opened. The Common
Vulnerabilities and Exposures project assigned the name
CAN-2005-3193 to these issues.



Solution : Get the newest Fedora Updates
Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2005 Tenable Network Security

Cables, Connectors

New Genuine Cisco 1000BASE-LX/LH SFP transceiver SFP-GE-L
$110.0
New Genuine Cisco 1000BASE-LX/LH SFP transceiver SFP-GE-L pictureLinksys UTA200-TM T-Mobile Home Hi-Port HiPort Phone Adapter Router
$1.0
Linksys UTA200-TM T-Mobile Home Hi-Port HiPort Phone Adapter Router pictureCisco DS-C9148-48P-K9 MDS 9148 Multilayer Fabric Switch
$9.99
Cisco DS-C9148-48P-K9 MDS 9148  Multilayer Fabric Switch pictureLot of 10 Used Cisco WIC 1ADSL WAN Interface Cards
$95.0
Lot of 10 Used Cisco WIC 1ADSL WAN Interface Cards picture


Discussions

No Discussions have been posted on this vulnerability.