Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-0727

Overview

Vulnerability Score 7.6 7.6
CVE Id CVE-2000-0727
Last Modified 05 Sep 2008 04:21:44
Published 20 Oct 2000 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2000-0727

Summary

xpdf PDF viewer client earlier than 0.91 does not properly launch a web browser for embedded URL's, which allows an attacker to execute arbitrary commands via a URL that contains shell metacharacters.

Vulnerable Systems

Application

  • Xpdf 0.90


References

BID - 1624

DEBIAN - 20000910 xpdf: local exploit

CALDERA - CSSA-2000-031.0

BUGTRAQ - 20000829 MDKSA-2000:041 - xpdf update

REDHAT - RHSA-2000:060

BUGTRAQ - 20000913 Conectiva Linux Security Announcement - xpdf


Last Updated: 27 May 2016 10:35:50