Various UNIX and Linux PDF readers/viewers execute commands embedded within hyperlinks
2003-06-18T00:00:00
ID VU:200132 Type cert Reporter CERT Modified 2003-09-26T00:00:00
Description
Overview
A vulnerability in various UNIX and Linux PDF viewers/readers may allow remote attackers to execute arbitrary commands on your system.
Description
Adobe Systems Incorporated describes PDF (Portable Document Format) as "a universal file format that preserves the fonts, images, graphics, and layout of any source document, regardless of the application and platform used to create it." A viewer such as Adobe Reader or Xpdf is needed to view a document encoded in PDF. Various PDF viewers are widely deployed on the Internet. Quoting from the Adobe Systems Incorporated web site:
Governments and enterprises around the world have adopted PDF to streamline document management, increase productivity, and reduce reliance on paper....An open file format specification, PDF is available to anyone who wants to develop tools to create, view, or manipulate PDF documents. Indeed, more than 1,800 vendors offer PDF-based solutions, ensuring that organizations that adopt the PDF standard have a variety of tools to leverage the Portable Document Format and to customize document processes.
When a victim clicks on a hyperlink contained within a malicious PDF file, an attacker may be able to execute arbitrary commands with the privileges of the victim. This is possible because some UNIX and Linux PDF readers/viewers spawn external programs to handle hyperlinks by invoking the shell command interpreter.
Impact
A remote attacker may be able to execute arbitrary commands with the privileges of the victim.
Solution
Apply a patch when available.
Systems Affected
Vendor| Status| Date Notified| Date Updated
---|---|---|---
Adobe Systems Incorporated| | 08 May 2003| 18 Jun 2003
Conectiva| | 15 May 2003| 22 Sep 2003
Debian| | 15 May 2003| 19 May 2003
MandrakeSoft| | 15 May 2003| 14 Jul 2003
Red Hat Inc.| | 15 May 2003| 19 Jun 2003
Sun Microsystems Inc.| | 15 May 2003| 17 Jun 2003
Xpdf| | 20 May 2003| 17 Jun 2003
Apple Computer Inc.| | -| 18 Jun 2003
Fujitsu| | 15 May 2003| 08 Aug 2003
Hitachi| | 15 May 2003| 18 Jun 2003
Ingrian Networks| | 15 May 2003| 23 May 2003
Microsoft Corporation| | 15 May 2003| 19 May 2003
NEC Corporation| | 15 May 2003| 16 Jun 2003
Nortel Networks| | 15 May 2003| 14 Jul 2003
Xerox Corporation| | 15 May 2003| 14 Jul 2003
If you are a vendor and your product is affected, let us know.
{"id": "VU:200132", "bulletinFamily": "info", "title": "Various UNIX and Linux PDF readers/viewers execute commands embedded within hyperlinks", "description": "### Overview\n\nA vulnerability in various UNIX and Linux PDF viewers/readers may allow remote attackers to execute arbitrary commands on your system.\n\n### Description\n\nAdobe Systems Incorporated [_describes_](<http://www.adobe.com/products/acrobat/adobepdf.html>) PDF (Portable Document Format) as \"a universal file format that preserves the fonts, images, graphics, and layout of any source document, regardless of the application and platform used to create it.\" A viewer such as [_Adobe Reader_](<http://www.adobe.com/products/acrobat/readermain.html>) or [_Xpdf_](<http://www.foolabs.com/xpdf/about.html>) is needed to view a document encoded in PDF[](<http://www.foolabs.com/xpdf/about.html>). Various PDF viewers are widely deployed on the Internet. Quoting from the Adobe Systems Incorporated [_web site_](<http://www.adobe.com/products/acrobat/adobepdf.html>): \n\nGovernments and enterprises around the world have adopted PDF to streamline document management, increase productivity, and reduce reliance on paper....An open file format specification, PDF is available to anyone who wants to develop tools to create, view, or manipulate PDF documents. Indeed, more than 1,800 vendors offer PDF-based solutions, ensuring that organizations that adopt the PDF standard have a variety of tools to leverage the Portable Document Format and to customize document processes. \n \nWhen a victim clicks on a hyperlink contained within a malicious PDF file, an attacker may be able to execute arbitrary commands with the privileges of the victim. This is possible because some UNIX and Linux PDF readers/viewers spawn external programs to handle hyperlinks by invoking the shell command interpreter. \n \n--- \n \n### Impact\n\nA remote attacker may be able to execute arbitrary commands with the privileges of the victim. \n \n--- \n \n### Solution\n\nApply a patch when available. \n \n--- \n \n### Systems Affected \n\nVendor| Status| Date Notified| Date Updated \n---|---|---|--- \nAdobe Systems Incorporated| | 08 May 2003| 18 Jun 2003 \nConectiva| | 15 May 2003| 22 Sep 2003 \nDebian| | 15 May 2003| 19 May 2003 \nMandrakeSoft| | 15 May 2003| 14 Jul 2003 \nRed Hat Inc.| | 15 May 2003| 19 Jun 2003 \nSun Microsystems Inc.| | 15 May 2003| 17 Jun 2003 \nXpdf| | 20 May 2003| 17 Jun 2003 \nApple Computer Inc.| | -| 18 Jun 2003 \nFujitsu| | 15 May 2003| 08 Aug 2003 \nHitachi| | 15 May 2003| 18 Jun 2003 \nIngrian Networks| | 15 May 2003| 23 May 2003 \nMicrosoft Corporation| | 15 May 2003| 19 May 2003 \nNEC Corporation| | 15 May 2003| 16 Jun 2003 \nNortel Networks| | 15 May 2003| 14 Jul 2003 \nXerox Corporation| | 15 May 2003| 14 Jul 2003 \nIf you are a vendor and your product is affected, [let us know](<mailto:cert@cert.org?Subject=VU%23200132 Vendor Status Inquiry>). \n \n\n\n### CVSS Metrics \n\nGroup | Score | Vector \n---|---|--- \nBase | N/A | N/A \nTemporal | N/A | N/A \nEnvironmental | N/A | N/A \n \n### References\n\n * <http://www.adobe.com/products/acrobat/adobepdf.html>\n * <http://www.adobe.com/products/acrobat/readermain.html>\n * <http://www.foolabs.com/xpdf/about.html>\n * <http://www.secunia.com/advisories/9037/>\n * <http://www.secunia.com/advisories/9038/>\n\n### Credit\n\nThis vulnerability was discovered by Martyn Gilmore. The CERT/CC thanks Martyn, Adobe, and the folks responsible for the Xpdf project.\n\nThis document was written by Ian A Finlay.\n\n### Other Information\n\n * CVE IDs: [CAN-2003-0434](<http://web.nvd.nist.gov/view/vuln/detail?vulnId=CAN-2003-0434>)\n * Date Public: 13 Jun 2003\n * Date First Published: 18 Jun 2003\n * Date Last Updated: 26 Sep 2003\n * Severity Metric: 37.97\n * Document Revision: 26\n\n", "published": "2003-06-18T00:00:00", "modified": "2003-09-26T00:00:00", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.kb.cert.org/vuls/id/200132", "reporter": "CERT", "references": ["http://www.secunia.com/advisories/9037/", "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CAN-2003-0434", "http://www.foolabs.com/xpdf/about.html", "http://www.foolabs.com/xpdf/about.html", "http://www.foolabs.com/xpdf/about.html", "http://www.adobe.com/products/acrobat/readermain.html", "http://www.adobe.com/products/acrobat/readermain.html", "http://www.adobe.com/products/acrobat/adobepdf.html", "http://www.adobe.com/products/acrobat/adobepdf.html", "http://www.adobe.com/products/acrobat/adobepdf.html", "http://www.secunia.com/advisories/9038/"], "cvelist": ["CVE-2003-0434", "CVE-2003-0434"], "type": "cert", "lastseen": "2018-08-31T02:36:50", "history": [{"bulletin": {"bulletinFamily": "info", "cvelist": ["CVE-2003-0434", "CVE-2003-0434"], "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "description": "### Overview\n\nA vulnerability in various UNIX and Linux PDF viewers/readers may allow remote attackers to execute arbitrary commands on your system.\n\n### Description\n\nAdobe Systems Incorporated [_describes_](<http://www.adobe.com/products/acrobat/adobepdf.html>) PDF (Portable Document Format) as \"a universal file format that preserves the fonts, images, graphics, and layout of any source document, regardless of the application and platform used to create it.\" A viewer such as [_Adobe Reader_](<http://www.adobe.com/products/acrobat/readermain.html>) or [_Xpdf_](<http://www.foolabs.com/xpdf/about.html>) is needed to view a document encoded in PDF[](<http://www.foolabs.com/xpdf/about.html>). Various PDF viewers are widely deployed on the Internet. Quoting from the Adobe Systems Incorporated [_web site_](<http://www.adobe.com/products/acrobat/adobepdf.html>): \n\nGovernments and enterprises around the world have adopted PDF to streamline document management, increase productivity, and reduce reliance on paper....An open file format specification, PDF is available to anyone who wants to develop tools to create, view, or manipulate PDF documents. Indeed, more than 1,800 vendors offer PDF-based solutions, ensuring that organizations that adopt the PDF standard have a variety of tools to leverage the Portable Document Format and to customize document processes. \n\n\nWhen a victim clicks on a hyperlink contained within a malicious PDF file, an attacker may be able to execute arbitrary commands with the privileges of the victim. This is possible because some UNIX and Linux PDF readers/viewers spawn external programs to handle hyperlinks by invoking the shell command interpreter. \n \n--- \n \n### Impact\n\nA remote attacker may be able to execute arbitrary commands with the privileges of the victim. \n \n--- \n \n### Solution\n\nApply a patch when available. \n \n--- \n \n### Systems Affected \n\nVendor| Status| Date Notified| Date Updated \n---|---|---|--- \nAdobe Systems Incorporated| | 08 May 2003| 18 Jun 2003 \nConectiva| | 15 May 2003| 22 Sep 2003 \nDebian| | 15 May 2003| 19 May 2003 \nMandrakeSoft| | 15 May 2003| 14 Jul 2003 \nRed Hat Inc.| | 15 May 2003| 19 Jun 2003 \nSun Microsystems Inc.| | 15 May 2003| 17 Jun 2003 \nXpdf| | 20 May 2003| 17 Jun 2003 \nApple Computer Inc.| | -| 18 Jun 2003 \nFujitsu| | 15 May 2003| 08 Aug 2003 \nHitachi| | 15 May 2003| 18 Jun 2003 \nIngrian Networks| | 15 May 2003| 23 May 2003 \nMicrosoft Corporation| | 15 May 2003| 19 May 2003 \nNEC Corporation| | 15 May 2003| 16 Jun 2003 \nNortel Networks| | 15 May 2003| 14 Jul 2003 \nXerox Corporation| | 15 May 2003| 14 Jul 2003 \nIf you are a vendor and your product is affected, [let us know](<mailto:cert@cert.org?Subject=VU%23200132 Vendor Status Inquiry>). \n \n\n\n### CVSS Metrics \n\nGroup | Score | Vector \n---|---|--- \nBase | N/A | N/A \nTemporal | N/A | N/A \nEnvironmental | N/A | N/A \n \n### References\n\n * <http://www.adobe.com/products/acrobat/adobepdf.html>\n * <http://www.adobe.com/products/acrobat/readermain.html>\n * <http://www.foolabs.com/xpdf/about.html>\n * <http://www.secunia.com/advisories/9037/>\n * <http://www.secunia.com/advisories/9038/>\n\n### Credit\n\nThis vulnerability was discovered by Martyn Gilmore. The CERT/CC thanks Martyn, Adobe, and the folks responsible for the Xpdf project.\n\nThis document was written by Ian A Finlay.\n\n### Other Information\n\n * CVE IDs: [CAN-2003-0434](<http://web.nvd.nist.gov/view/vuln/detail?vulnId=CAN-2003-0434>)\n * Date Public: 13 Jun 2003\n * Date First Published: 18 Jun 2003\n * Date Last Updated: 26 Sep 2003\n * Severity Metric: 37.97\n * Document Revision: 26\n\n", "edition": 1, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "hash": "56becfd3e3405acdfbfca6aad065beb55cfd8be88f8932f35a91014a54a817bf", "hashmap": [{"hash": "b6ba9fa6ea18201bf39ea635ecca9f13", "key": "type"}, {"hash": "e5d275b3ebd62646b78320753699e02e", "key": "cvss"}, {"hash": "caf9b6b99962bf5c2264824231d7a40c", "key": "bulletinFamily"}, {"hash": "8a404ac1777dacfd4a9b313a13df5ef7", "key": "published"}, {"hash": "a78e1122f799fc17fd054717f3508d0b", "key": "cvelist"}, {"hash": "308241858cb1d8c7a9a424485e00bfb5", "key": "modified"}, {"hash": "15295f0f51e7a9f29d520f3618613c8a", "key": "title"}, {"hash": "b418d8fe53b5e83bcfa8b471d8a35918", "key": "href"}, {"hash": "5d2cfab83ed6e86a4812690790dc7ad5", "key": "reporter"}, {"hash": "2c24b7027ac0157adc7ce671d5248bb7", "key": "references"}, {"hash": "818ad7476adf41a4f74076c425708e5d", "key": "description"}], "history": [], "href": "https://www.kb.cert.org/vuls/id/200132", "id": "VU:200132", "lastseen": "2016-02-03T09:12:23", "modified": "2003-09-26T00:00:00", "objectVersion": "1.2", "published": "2003-06-18T00:00:00", "references": ["http://www.secunia.com/advisories/9037/", "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CAN-2003-0434", "http://www.foolabs.com/xpdf/about.html", "http://www.foolabs.com/xpdf/about.html", "http://www.foolabs.com/xpdf/about.html", "http://www.adobe.com/products/acrobat/readermain.html", "http://www.adobe.com/products/acrobat/readermain.html", "http://www.adobe.com/products/acrobat/adobepdf.html", "http://www.adobe.com/products/acrobat/adobepdf.html", "http://www.adobe.com/products/acrobat/adobepdf.html", "http://www.secunia.com/advisories/9038/"], "reporter": "CERT", "title": "Various UNIX and Linux PDF readers/viewers execute commands embedded within hyperlinks", "type": "cert", "viewCount": 0}, "differentElements": ["description"], "edition": 1, "lastseen": "2016-02-03T09:12:23"}, {"bulletin": {"bulletinFamily": "info", "cvelist": ["CVE-2003-0434", "CVE-2003-0434"], "cvss": {"score": 0.0, "vector": "NONE"}, "description": "### Overview\n\nA vulnerability in various UNIX and Linux PDF viewers/readers may allow remote attackers to execute arbitrary commands on your system.\n\n### Description\n\nAdobe Systems Incorporated [_describes_](<http://www.adobe.com/products/acrobat/adobepdf.html>) PDF (Portable Document Format) as \"a universal file format that preserves the fonts, images, graphics, and layout of any source document, regardless of the application and platform used to create it.\" A viewer such as [_Adobe Reader_](<http://www.adobe.com/products/acrobat/readermain.html>) or [_Xpdf_](<http://www.foolabs.com/xpdf/about.html>) is needed to view a document encoded in PDF[](<http://www.foolabs.com/xpdf/about.html>). Various PDF viewers are widely deployed on the Internet. Quoting from the Adobe Systems Incorporated [_web site_](<http://www.adobe.com/products/acrobat/adobepdf.html>): \n\nGovernments and enterprises around the world have adopted PDF to streamline document management, increase productivity, and reduce reliance on paper....An open file format specification, PDF is available to anyone who wants to develop tools to create, view, or manipulate PDF documents. Indeed, more than 1,800 vendors offer PDF-based solutions, ensuring that organizations that adopt the PDF standard have a variety of tools to leverage the Portable Document Format and to customize document processes. \n \nWhen a victim clicks on a hyperlink contained within a malicious PDF file, an attacker may be able to execute arbitrary commands with the privileges of the victim. This is possible because some UNIX and Linux PDF readers/viewers spawn external programs to handle hyperlinks by invoking the shell command interpreter. \n \n--- \n \n### Impact\n\nA remote attacker may be able to execute arbitrary commands with the privileges of the victim. \n \n--- \n \n### Solution\n\nApply a patch when available. \n \n--- \n \n### Systems Affected \n\nVendor| Status| Date Notified| Date Updated \n---|---|---|--- \nAdobe Systems Incorporated| | 08 May 2003| 18 Jun 2003 \nConectiva| | 15 May 2003| 22 Sep 2003 \nDebian| | 15 May 2003| 19 May 2003 \nMandrakeSoft| | 15 May 2003| 14 Jul 2003 \nRed Hat Inc.| | 15 May 2003| 19 Jun 2003 \nSun Microsystems Inc.| | 15 May 2003| 17 Jun 2003 \nXpdf| | 20 May 2003| 17 Jun 2003 \nApple Computer Inc.| | -| 18 Jun 2003 \nFujitsu| | 15 May 2003| 08 Aug 2003 \nHitachi| | 15 May 2003| 18 Jun 2003 \nIngrian Networks| | 15 May 2003| 23 May 2003 \nMicrosoft Corporation| | 15 May 2003| 19 May 2003 \nNEC Corporation| | 15 May 2003| 16 Jun 2003 \nNortel Networks| | 15 May 2003| 14 Jul 2003 \nXerox Corporation| | 15 May 2003| 14 Jul 2003 \nIf you are a vendor and your product is affected, [let us know](<mailto:cert@cert.org?Subject=VU%23200132 Vendor Status Inquiry>). \n \n\n\n### CVSS Metrics \n\nGroup | Score | Vector \n---|---|--- \nBase | N/A | N/A \nTemporal | N/A | N/A \nEnvironmental | N/A | N/A \n \n### References\n\n * <http://www.adobe.com/products/acrobat/adobepdf.html>\n * <http://www.adobe.com/products/acrobat/readermain.html>\n * <http://www.foolabs.com/xpdf/about.html>\n * <http://www.secunia.com/advisories/9037/>\n * <http://www.secunia.com/advisories/9038/>\n\n### Credit\n\nThis vulnerability was discovered by Martyn Gilmore. The CERT/CC thanks Martyn, Adobe, and the folks responsible for the Xpdf project.\n\nThis document was written by Ian A Finlay.\n\n### Other Information\n\n * CVE IDs: [CAN-2003-0434](<http://web.nvd.nist.gov/view/vuln/detail?vulnId=CAN-2003-0434>)\n * Date Public: 13 Jun 2003\n * Date First Published: 18 Jun 2003\n * Date Last Updated: 26 Sep 2003\n * Severity Metric: 37.97\n * Document Revision: 26\n\n", "edition": 3, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "hash": "5e65e25a30e25c60ebb045ffc79360147ac497cba0ce0029fc9b8f91573910ea", "hashmap": [{"hash": "b6ba9fa6ea18201bf39ea635ecca9f13", "key": "type"}, {"hash": "d53e73f65541c79ded772f3e582384c1", "key": "description"}, {"hash": "caf9b6b99962bf5c2264824231d7a40c", "key": "bulletinFamily"}, {"hash": "8a404ac1777dacfd4a9b313a13df5ef7", "key": "published"}, {"hash": "a78e1122f799fc17fd054717f3508d0b", "key": "cvelist"}, {"hash": "308241858cb1d8c7a9a424485e00bfb5", "key": "modified"}, {"hash": "15295f0f51e7a9f29d520f3618613c8a", "key": "title"}, {"hash": "b418d8fe53b5e83bcfa8b471d8a35918", "key": "href"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "5d2cfab83ed6e86a4812690790dc7ad5", "key": "reporter"}, {"hash": "2c24b7027ac0157adc7ce671d5248bb7", "key": "references"}], "history": [], "href": "https://www.kb.cert.org/vuls/id/200132", "id": "VU:200132", "lastseen": "2018-08-30T20:37:50", "modified": "2003-09-26T00:00:00", "objectVersion": "1.3", "published": "2003-06-18T00:00:00", "references": ["http://www.secunia.com/advisories/9037/", "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CAN-2003-0434", "http://www.foolabs.com/xpdf/about.html", "http://www.foolabs.com/xpdf/about.html", "http://www.foolabs.com/xpdf/about.html", "http://www.adobe.com/products/acrobat/readermain.html", "http://www.adobe.com/products/acrobat/readermain.html", "http://www.adobe.com/products/acrobat/adobepdf.html", "http://www.adobe.com/products/acrobat/adobepdf.html", "http://www.adobe.com/products/acrobat/adobepdf.html", "http://www.secunia.com/advisories/9038/"], "reporter": "CERT", "title": "Various UNIX and Linux PDF readers/viewers execute commands embedded within hyperlinks", "type": "cert", "viewCount": 0}, "differentElements": ["cvss"], "edition": 3, "lastseen": "2018-08-30T20:37:50"}, {"bulletin": {"bulletinFamily": "info", "cvelist": ["CVE-2003-0434", "CVE-2003-0434"], "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "description": "### Overview\n\nA vulnerability in various UNIX and Linux PDF viewers/readers may allow remote attackers to execute arbitrary commands on your system.\n\n### Description\n\nAdobe Systems Incorporated [_describes_](<http://www.adobe.com/products/acrobat/adobepdf.html>) PDF (Portable Document Format) as \"a universal file format that preserves the fonts, images, graphics, and layout of any source document, regardless of the application and platform used to create it.\" A viewer such as [_Adobe Reader_](<http://www.adobe.com/products/acrobat/readermain.html>) or [_Xpdf_](<http://www.foolabs.com/xpdf/about.html>) is needed to view a document encoded in PDF[](<http://www.foolabs.com/xpdf/about.html>). Various PDF viewers are widely deployed on the Internet. Quoting from the Adobe Systems Incorporated [_web site_](<http://www.adobe.com/products/acrobat/adobepdf.html>): \n\nGovernments and enterprises around the world have adopted PDF to streamline document management, increase productivity, and reduce reliance on paper....An open file format specification, PDF is available to anyone who wants to develop tools to create, view, or manipulate PDF documents. Indeed, more than 1,800 vendors offer PDF-based solutions, ensuring that organizations that adopt the PDF standard have a variety of tools to leverage the Portable Document Format and to customize document processes. \n \nWhen a victim clicks on a hyperlink contained within a malicious PDF file, an attacker may be able to execute arbitrary commands with the privileges of the victim. This is possible because some UNIX and Linux PDF readers/viewers spawn external programs to handle hyperlinks by invoking the shell command interpreter. \n \n--- \n \n### Impact\n\nA remote attacker may be able to execute arbitrary commands with the privileges of the victim. \n \n--- \n \n### Solution\n\nApply a patch when available. \n \n--- \n \n### Systems Affected \n\nVendor| Status| Date Notified| Date Updated \n---|---|---|--- \nAdobe Systems Incorporated| | 08 May 2003| 18 Jun 2003 \nConectiva| | 15 May 2003| 22 Sep 2003 \nDebian| | 15 May 2003| 19 May 2003 \nMandrakeSoft| | 15 May 2003| 14 Jul 2003 \nRed Hat Inc.| | 15 May 2003| 19 Jun 2003 \nSun Microsystems Inc.| | 15 May 2003| 17 Jun 2003 \nXpdf| | 20 May 2003| 17 Jun 2003 \nApple Computer Inc.| | -| 18 Jun 2003 \nFujitsu| | 15 May 2003| 08 Aug 2003 \nHitachi| | 15 May 2003| 18 Jun 2003 \nIngrian Networks| | 15 May 2003| 23 May 2003 \nMicrosoft Corporation| | 15 May 2003| 19 May 2003 \nNEC Corporation| | 15 May 2003| 16 Jun 2003 \nNortel Networks| | 15 May 2003| 14 Jul 2003 \nXerox Corporation| | 15 May 2003| 14 Jul 2003 \nIf you are a vendor and your product is affected, [let us know](<mailto:cert@cert.org?Subject=VU%23200132 Vendor Status Inquiry>). \n \n\n\n### CVSS Metrics \n\nGroup | Score | Vector \n---|---|--- \nBase | N/A | N/A \nTemporal | N/A | N/A \nEnvironmental | N/A | N/A \n \n### References\n\n * <http://www.adobe.com/products/acrobat/adobepdf.html>\n * <http://www.adobe.com/products/acrobat/readermain.html>\n * <http://www.foolabs.com/xpdf/about.html>\n * <http://www.secunia.com/advisories/9037/>\n * <http://www.secunia.com/advisories/9038/>\n\n### Credit\n\nThis vulnerability was discovered by Martyn Gilmore. The CERT/CC thanks Martyn, Adobe, and the folks responsible for the Xpdf project.\n\nThis document was written by Ian A Finlay.\n\n### Other Information\n\n * CVE IDs: [CAN-2003-0434](<http://web.nvd.nist.gov/view/vuln/detail?vulnId=CAN-2003-0434>)\n * Date Public: 13 Jun 2003\n * Date First Published: 18 Jun 2003\n * Date Last Updated: 26 Sep 2003\n * Severity Metric: 37.97\n * Document Revision: 26\n\n", "edition": 2, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "hash": "b909924b7a35120d7c3a8e32f09709c6f68dbf823315be200d018364760f3bbd", "hashmap": [{"hash": "b6ba9fa6ea18201bf39ea635ecca9f13", "key": "type"}, {"hash": "d53e73f65541c79ded772f3e582384c1", "key": "description"}, {"hash": "e5d275b3ebd62646b78320753699e02e", "key": "cvss"}, {"hash": "caf9b6b99962bf5c2264824231d7a40c", "key": "bulletinFamily"}, {"hash": "8a404ac1777dacfd4a9b313a13df5ef7", "key": "published"}, {"hash": "a78e1122f799fc17fd054717f3508d0b", "key": "cvelist"}, {"hash": "308241858cb1d8c7a9a424485e00bfb5", "key": "modified"}, {"hash": "15295f0f51e7a9f29d520f3618613c8a", "key": "title"}, {"hash": "b418d8fe53b5e83bcfa8b471d8a35918", "key": "href"}, {"hash": "5d2cfab83ed6e86a4812690790dc7ad5", "key": "reporter"}, {"hash": "2c24b7027ac0157adc7ce671d5248bb7", "key": "references"}], "history": [], "href": "https://www.kb.cert.org/vuls/id/200132", "id": "VU:200132", "lastseen": "2018-08-02T21:55:57", "modified": "2003-09-26T00:00:00", "objectVersion": "1.3", "published": "2003-06-18T00:00:00", "references": ["http://www.secunia.com/advisories/9037/", "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CAN-2003-0434", "http://www.foolabs.com/xpdf/about.html", "http://www.foolabs.com/xpdf/about.html", "http://www.foolabs.com/xpdf/about.html", "http://www.adobe.com/products/acrobat/readermain.html", "http://www.adobe.com/products/acrobat/readermain.html", "http://www.adobe.com/products/acrobat/adobepdf.html", "http://www.adobe.com/products/acrobat/adobepdf.html", "http://www.adobe.com/products/acrobat/adobepdf.html", "http://www.secunia.com/advisories/9038/"], "reporter": "CERT", "title": "Various UNIX and Linux PDF readers/viewers execute commands embedded within hyperlinks", "type": "cert", "viewCount": 0}, "differentElements": ["cvss"], "edition": 2, "lastseen": "2018-08-02T21:55:57"}], "edition": 4, "hashmap": [{"key": "bulletinFamily", "hash": "caf9b6b99962bf5c2264824231d7a40c"}, {"key": "cvelist", "hash": "a78e1122f799fc17fd054717f3508d0b"}, {"key": "cvss", "hash": "e5d275b3ebd62646b78320753699e02e"}, {"key": "description", "hash": "d53e73f65541c79ded772f3e582384c1"}, {"key": "href", "hash": "b418d8fe53b5e83bcfa8b471d8a35918"}, {"key": "modified", "hash": "308241858cb1d8c7a9a424485e00bfb5"}, {"key": "published", "hash": "8a404ac1777dacfd4a9b313a13df5ef7"}, {"key": "references", "hash": "2c24b7027ac0157adc7ce671d5248bb7"}, {"key": "reporter", "hash": "5d2cfab83ed6e86a4812690790dc7ad5"}, {"key": "title", "hash": "15295f0f51e7a9f29d520f3618613c8a"}, {"key": "type", "hash": "b6ba9fa6ea18201bf39ea635ecca9f13"}], "hash": "b909924b7a35120d7c3a8e32f09709c6f68dbf823315be200d018364760f3bbd", "viewCount": 0, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}, "vulnersScore": 7.5}, "objectVersion": "1.3"}
{"cve": [{"lastseen": "2017-10-11T11:05:49", "references": ["http://www.kb.cert.org/vuls/id/200132", "http://marc.info/?l=bugtraq&m=105777963019186&w=2", "http://www.redhat.com/support/errata/RHSA-2003-197.html", "http://lists.grok.org.uk/pipermail/full-disclosure/2003-June/005719.html", "http://www.mandriva.com/security/advisories?name=MDKSA-2003:071", "http://www.redhat.com/support/errata/RHSA-2003-196.html"], "description": "Various PDF viewers including (1) Adobe Acrobat 5.06 and (2) Xpdf 1.01 allow remote attackers to execute arbitrary commands via shell metacharacters in an embedded hyperlink.", "edition": 3, "reporter": "NVD", "published": "2003-07-24T00:00:00", "title": "CVE-2003-0434", "type": "cve", "enchantments": {"score": {"modified": "2017-10-11T11:05:49", "vector": "NONE", "value": 7.5}}, "assessment": {"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:664", "href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A664"}, "bulletinFamily": "NVD", "cvelist": ["CVE-2003-0434"], "scanner": [{"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:664", "href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:664"}], "modified": "2017-10-10T21:29:10", "cpe": ["cpe:/o:redhat:linux:7.3", "cpe:/o:redhat:enterprise_linux:2.1::enterprise_server", "cpe:/o:mandrakesoft:mandrake_linux:9.1", "cpe:/a:xpdf:xpdf:1.1", "cpe:/o:redhat:linux:8.0", "cpe:/a:adobe:acrobat:5.0.6", "cpe:/o:mandrakesoft:mandrake_linux:9.0", "cpe:/o:redhat:linux:7.1", "cpe:/o:redhat:enterprise_linux:2.1::advanced_server", "cpe:/o:redhat:linux_advanced_workstation:2.1::itanium", "cpe:/o:redhat:linux:9.0", "cpe:/o:redhat:enterprise_linux:2.1::workstation", "cpe:/o:mandrakesoft:mandrake_linux_corporate_server:2.1", "cpe:/o:redhat:linux:7.2"], "id": "CVE-2003-0434", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2003-0434", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "exploitdb": [{"lastseen": "2016-02-02T19:29:59", "osvdbidlist": ["9293"], "_object_types": ["robots.models.exploitdb.ExploitDbBulletin", "robots.models.base.Bulletin"], "references": [], "description": "Adobe Acrobat Reader (UNIX) 5.0 6,Xpdf 0.9x Hyperlinks Arbitrary Command Execution. CVE-2003-0434. Remote exploit for linux platform", "reporter": "Martyn Gilmore", "published": "2003-06-13T00:00:00", "type": "exploitdb", "title": "Adobe Acrobat Reader UNIX 5.0 6 / Xpdf 0.9x Hyperlinks - Arbitrary Command Execution", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "exploit", "cvelist": ["CVE-2003-0434"], "_object_type": "robots.models.exploitdb.ExploitDbBulletin", "modified": "2003-06-13T00:00:00", "id": "EDB-ID:22771", "href": "https://www.exploit-db.com/exploits/22771/", "sourceData": "source: http://www.securityfocus.com/bid/7912/info\r\n\r\nA vulnerability has been reported for multiple PDF viewers for Unix variant operating systems. The problem is said to occur when hyperlinks have been enabled within the viewer. Allegedly, by placing a specially formatted hyperlink within a PDF file it is possible to execute arbitrary shell commands when a user clicks the link. This is due to the PDF viewer invoking an external application, via a call to 'sh -c', to handle the request.\r\n\r\nSuccessful exploitation of this vulnerability could potentially allow an attacker to execute arbitrary commands on a target system with the privileges of the user invoking the PDF document.\r\n\r\nIt should be noted that this vulnerability may be similar to that described in BID 1624.\r\n\r\n** Reports suggest that the fixes supplied by Red Hat and Mandrake Linux do not adequately fix the problem. Specifically, the fixes make changes to xpdf to filter out back quote characters. The problem lies in the fact that other shell metacharacters are not filtered. Thus it may still be possible for attackers to execute arbitrary commands. Red Hat has released updated advisories to correct this oversight. \r\n\r\n\\documentclass[11pt]{minimal}\r\n\\usepackage{color}\r\n\\usepackage[urlcolor=blue,colorlinks=true,pdfpagemode=none]{hyperref}\r\n\\begin{document}\r\n\\href{prot:hyperlink with stuff, say, `rm -rf /tmp/abc`; touch /tmp/pqr}{\\textt\\t{Click me}}\r\n\\end{document}", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "sourceHref": "https://www.exploit-db.com/download/22771/"}], "redhat": [{"lastseen": "2018-12-11T17:42:12", "_object_types": ["robots.models.redhat.RedHatBulletin", "robots.models.base.Bulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "any", "packageVersion": "0.92-10", "arch": "i386", "packageName": "xpdf", "packageFilename": "xpdf-0.92-10.i386.rpm", "operator": "lt"}], "description": "Xpdf is an X Window System based viewer for Portable Document Format\n(PDF) files.\n\nMartyn Gilmore discovered a flaw in various PDF viewers and readers. An\nattacker can embed malicious external-type hyperlinks that if activated or\nfollowed by a victim can execute arbitrary shell commands. The Common\nVulnerabilities and Exposures project (cve.mitre.org) has\nassigned the name CAN-2003-0434 to this issue.\n\nAll users of Xpdf are advised to upgrade to these errata packages, which\ncontain a patch correcting this issue.", "reporter": "RedHat", "published": "2003-06-18T04:00:00", "type": "redhat", "title": "(RHSA-2003:197) xpdf security update", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2003-0434"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-03-14T19:27:16", "id": "RHSA-2003:197", "href": "https://access.redhat.com/errata/RHSA-2003:197", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "osvdb": [{"lastseen": "2017-04-28T13:20:04", "references": [], "edition": 1, "description": "# No description provided by the source\n\n## References:\nVendor URL: http://www.adobe.com/\nSecurity Tracker: 1006989\nSecurity Tracker: 1006988\nRedHat RHSA: RHSA-2003:197\nISS X-Force ID: 12323\n[CVE-2003-0434](https://vulners.com/cve/CVE-2003-0434)\nCIAC Advisory: n-107\nCERT VU: 200132\nBugtraq ID: 7912\n", "reporter": "OSVDB", "published": "2003-06-14T00:00:00", "title": "Multiple PDF Viewers Embedded Hyperlink Shell Metacharacter Command Execution", "type": "osvdb", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2003-0434"], "modified": "2003-06-14T00:00:00", "href": "https://vulners.com/osvdb/OSVDB:9293", "id": "OSVDB:9293", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "nessus": [{"lastseen": "2018-11-29T19:44:32", "references": ["https://access.redhat.com/security/cve/cve-2003-0434", "https://access.redhat.com/errata/RHSA-2003:197", "http://www.nessus.org/u?9c9d86d5"], "pluginID": "12402", "description": "Updated Xpdf packages are available that fix a vulnerability where a malicious PDF document could run arbitrary code.\n\n[Updated 21 July 2003] Updated packages are now available, as the original errata packages did not fix all possible ways of exploiting this vulnerability.\n\nXpdf is an X Window System based viewer for Portable Document Format (PDF) files.\n\nMartyn Gilmore discovered a flaw in various PDF viewers and readers.\nAn attacker can embed malicious external-type hyperlinks that if activated or followed by a victim can execute arbitrary shell commands. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2003-0434 to this issue.\n\nAll users of Xpdf are advised to upgrade to these errata packages, which contain a patch correcting this issue.", "edition": 9, "reporter": "Tenable", "published": "2004-07-06T00:00:00", "title": "RHEL 2.1 : xpdf (RHSA-2003:197)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Red Hat Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2003-0434"], "modified": "2018-11-27T00:00:00", "cpe": ["cpe:/o:redhat:enterprise_linux:2.1", "p-cpe:/a:redhat:enterprise_linux:xpdf"], "id": "REDHAT-RHSA-2003-197.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=12402", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2003:197. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(12402);\n script_version (\"1.21\");\n script_cvs_date(\"Date: 2018/11/27 13:31:31\");\n\n script_cve_id(\"CVE-2003-0434\");\n script_xref(name:\"RHSA\", value:\"2003:197\");\n\n script_name(english:\"RHEL 2.1 : xpdf (RHSA-2003:197)\");\n script_summary(english:\"Checks the rpm output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated Xpdf packages are available that fix a vulnerability where a\nmalicious PDF document could run arbitrary code.\n\n[Updated 21 July 2003] Updated packages are now available, as the\noriginal errata packages did not fix all possible ways of exploiting\nthis vulnerability.\n\nXpdf is an X Window System based viewer for Portable Document Format\n(PDF) files.\n\nMartyn Gilmore discovered a flaw in various PDF viewers and readers.\nAn attacker can embed malicious external-type hyperlinks that if\nactivated or followed by a victim can execute arbitrary shell\ncommands. The Common Vulnerabilities and Exposures project\n(cve.mitre.org) has assigned the name CVE-2003-0434 to this issue.\n\nAll users of Xpdf are advised to upgrade to these errata packages,\nwhich contain a patch correcting this issue.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2003-0434\"\n );\n # http://lists.netsys.com/pipermail/full-disclosure/2003-June/010397.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?9c9d86d5\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2003:197\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected xpdf package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:xpdf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:2.1\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/07/23\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/06\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^2\\.1([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 2.1\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\nif (cpu !~ \"^i[3-6]86$\") audit(AUDIT_ARCH_NOT, \"i386\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2003:197\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL2.1\", cpu:\"i386\", reference:\"xpdf-0.92-10\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"xpdf\");\n }\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:51:40", "references": [], "pluginID": "14054", "description": "Martyn Gilmore discovered flaws in various PDF viewers, including xpdf. An attacker could place malicious external hyperlinks in a document that, if followed, could execute arbitary shell commands with the privileges of the person viewing the PDF document.\n\nUpdate :\n\nNew packages are available as the previous patches that had been applied did not correct all possible ways of exploiting this issue.", "edition": 5, "reporter": "Tenable", "published": "2004-07-31T00:00:00", "title": "Mandrake Linux Security Advisory : xpdf (MDKSA-2003:071-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Mandriva Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2003-0434"], "modified": "2018-07-19T00:00:00", "cpe": ["cpe:/o:mandrakesoft:mandrake_linux:9.1", "cpe:/o:mandrakesoft:mandrake_linux:9.0", "p-cpe:/a:mandriva:linux:xpdf"], "id": "MANDRAKE_MDKSA-2003-071.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=14054", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandrake Linux Security Advisory MDKSA-2003:071. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(14054);\n script_version (\"1.18\");\n script_cvs_date(\"Date: 2018/07/19 20:59:12\");\n\n script_cve_id(\"CVE-2003-0434\");\n script_xref(name:\"MDKSA\", value:\"2003:071-1\");\n\n script_name(english:\"Mandrake Linux Security Advisory : xpdf (MDKSA-2003:071-1)\");\n script_summary(english:\"Checks rpm output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Mandrake Linux host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Martyn Gilmore discovered flaws in various PDF viewers, including\nxpdf. An attacker could place malicious external hyperlinks in a\ndocument that, if followed, could execute arbitary shell commands with\nthe privileges of the person viewing the PDF document.\n\nUpdate :\n\nNew packages are available as the previous patches that had been\napplied did not correct all possible ways of exploiting this issue.\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected xpdf package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:xpdf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:9.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:9.1\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/07/23\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/31\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"xpdf-1.01-4.3mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK9.1\", cpu:\"i386\", reference:\"xpdf-2.01-2.2mdk\", yank:\"mdk\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}]}
