FrSIRT - Fedora Security Update Fixes Xpdf Multiple Command Execution Issues / Exploit

French Security Incident Response Team

Français

English

Fedora Security Update Fixes Xpdf Multiple Command Execution Issues

Date de Publication : 2007-11-13 © FrSIRT.COM
Titre : Fedora Security Update Fixes Xpdf Multiple Command Execution Issues
Identifiant : FrSIRT/AVIS-2007-3840
CVE ID : CVE-2007-4352 - CVE-2007-5392 - CVE-2007-5393
Risque : Elevé (3/4) -

Exploitable à distance : Oui
Exploitable en local : Oui

En savoir plus

Description

Produits affectés

Solution

Références

Description Technique

Plusieurs vulnérabilités ont été identifiées dans Fedora, elles pourraient être exploitées par des attaquants afin de causer un déni de service ou compromettre un système vulnérable [...]

Solution

Installer les mises à jour :

cc0e4f10a1739a10b41382a977d88df1ca809f02 xpdf-debuginfo-3.02-4.fc7.ppc64.rpm
f02acca00119622b0f0053498f425a89f5f6d05a xpdf-3.02-4.fc7.ppc64.rpm
e2814acc1aa934fcc54c5f1dd2591df85f150846 xpdf-3.02-4.fc7.i386.rpm
b4ffa0222094639cb3b803cfbf09b39dbc232c27 xpdf-debuginfo-3.02-4.fc7.i386.rpm
9c62db5aeb9c5d7951be4a6d24beeab6efd08d03 xpdf-3.02-4.fc7.x86_64.rpm
937c964cb1d35860893a3cfe86c1731eb55ff6ff xpdf-debuginfo-3.02-4.fc7.x86_64.rpm
fef6a66dc9a26e9d708e72bc70821b63711ee7fa xpdf-3.02-4.fc7.ppc.rpm
d344562cb961adff7941a360738d09142ecc9a65 xpdf-debuginfo-3.02-4.fc7.ppc.rpm
e4793e635b4d05d80740d5955b5dbd81039baeab xpdf-3.02-4.fc7.src.rpm

ff68b94139fbaa10d8c4cc31fd237bd6f82780ca xpdf-3.02-4.fc8.ppc64.rpm
b7160ed1a321338e53322755892d9986491c2eeb xpdf-debuginfo-3.02-4.fc8.ppc64.rpm
71271def0a915869659bbdc2774e1ea9e418bffa xpdf-3.02-4.fc8.i386.rpm
fec5aeca869105175bc1bc89daf4bdceb253a7f1 xpdf-debuginfo-3.02-4.fc8.i386.rpm
914dcb09f480212da136d817aed3e8fdea875990 xpdf-debuginfo-3.02-4.fc8.x86_64.rpm
db7f474c2780b53e5ce969bd1436d4f323bf89a8 xpdf-3.02-4.fc8.x86_64.rpm
85dfdfdba02c999ca0405c4260620b866fdffa08 xpdf-debuginfo-3.02-4.fc8.ppc.rpm
f4636894dec972d4cb12ab7ee5ac101ca5dcf5b1 xpdf-3.02-4.fc8.ppc.rpm
cad54df0ef2c8c9d594e32263742adef4fcde562 xpdf-3.02-4.fc8.src.rpm

Historique

2007-11-13 : Version Initiale

Recevez les bulletins FrSIRT

Le service FrSIRT VNS permet aux professionnels de la sécurité (RSSI, DSI, administrateurs et consultants) de recevoir en temps-réel, par email, SMS et flux RSS/XML, des bulletins de vulnérabilités complets, détaillés et personnalisés.

Recherche

Newsletter

	Mozilla Firefox for Mac OS X GIF Rendering Code Execution Vulnerability
	Mozilla Products Remote Code Execution Vulnerabilities
	Mozilla Products Code Execution and Injection Vulnerabilities
	Mozilla JavaScript Garbage Collector Code Execution Vulnerability
	Mozilla Thunderbird Code Execution and Cross Site Scripting Issues
	Mozilla Firefox and SeaMonkey Multiple Remote Code Execution Issues
	Mozilla Thunderbird Multiple Security Bypass and Code Execution Issues

	IBM AIX "swcons" Insecure Permission Privilege Escalation Vulnerability
	IBM WebSphere Application Server Cross Site Scripting Vulnerability
	IBM DB2 CLR Stored Procedures Unspecified Vulnerability
	IBM Lotus Quickr Multiple Cross Site Scripting Vulnerabilities
	IBM WebSphere Portal Remote Authentication Bypass Vulnerability
	IBM Rational ClearQuest Login Page Cross Site Scripting Vulnerability
	IBM WebSphere Application Server Security Exposure Vulnerabilities

	Apple Mac OS X Code Execution Vulnerabilities
	Apple iPhone and iPod touch Multiple Code Execution Vulnerabilities
	Apple Xcode Code Execution and Information Disclosure Vulnerabilities
	Apple TV Data Processing Remote Code Execution Vulnerabilities
	Apple Mac OS X Command Execution Vulnerabilities
	Apple Safari for Mac OS X Remote Code Execution Vulnerability
	Apple Mac OS X ARDAgent Local Privilege Escalation Vulnerability