Xpdf is an X Window System based viewer for Portable Document Format
(PDF) files.
Martyn Gilmore discovered a flaw in various PDF viewers and readers. An
attacker can embed malicious external-type hyperlinks that if activated or
followed by a victim can execute arbitrary shell commands. The Common
Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the name CAN-2003-0434 to this issue.
All users of Xpdf are advised to upgrade to these errata packages, which
contain a patch correcting this issue.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | any | i386 | xpdf | < 0.92-10 | xpdf-0.92-10.i386.rpm |
RedHat | any | ia64 | xpdf | < 0.92-10 | xpdf-0.92-10.ia64.rpm |