Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Fedora Local Security Checks >> Fedora Core 4 2005-729: xpdf


Vulnerability Assessment Details

Fedora Core 4 2005-729: xpdf

Vulnerability Assessment Summary
Check for the version of the xpdf package

Detailed Explanation for this Vulnerability Assessment

The remote host is missing the patch for the advisory FEDORA-2005-729 (xpdf).

Xpdf is an X Window System based viewer for Portable Document Format
(PDF) files. Xpdf is a small and efficient program which uses
standard X fonts.

Update Information:

A flaw was discovered in Xpdf in that a possible hacker could
construct a carefully crafted PDF file that would cause
Xpdf to consume all available disk space in /tmp when
opened. The Common Vulnerabilities and Exposures project
assigned the name CVE-2005-2097 to this issue.

Users of xpdf should upgrade to this updated package, which
contains a patch to resolve this issue.


Solution : http://fedoranews.org//mediawiki/index.php/Fedora_Core_4_Update:_xpdf-3.00-20.FC4.2
Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2005 Tenable Network Security

Cables, Connectors

Hynix 256GB M.2 SSD PC300 NVMe PCIe Solid State Drive HFS256GD9MND-5510A XHFF7
$53.0
Hynix 256GB M.2 SSD PC300 NVMe PCIe Solid State Drive HFS256GD9MND-5510A  XHFF7 picture5PCS Drive Bay Caddies SSD Hard Drive Bay 2.5" To 3.5" Tray Bracket SP
$3.31
5PCS Drive Bay Caddies SSD Hard Drive Bay 2.5New 2.5" to 3.5" Bay SSD HDD Hard Disk Drive Notebook Mounting Brackets Adapter
$1.99
New 2.5


Discussions

No Discussions have been posted on this vulnerability.