9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
An iDEFENSE security researcher discovered a buffer overflow in xpdf,
the portable document format (PDF) suite. A maliciously crafted PDF
file could exploit this problem, resulting in the execution of arbitrary
code.
For the stable distribution (woody) this problem has been fixed in
version 1.00-3.3.
For the unstable distribution (sid) this problem has been fixed in
version 3.00-11.
We recommend that you upgrade your xpdf package immediately.