CVE-2003-0434
Various PDF viewers including (1) Adobe Acrobat 5.06 and (2) Xpdf 1.01 allow remote attackers to execute arbitrary commands via shell metacharacters in an embedded hyperlink.
| Software | From | Fixed in |
|---|---|---|
| adobe / acrobat | 5.0.6 | 5.0.6.x |
| xpdf / xpdf | 1.1 | 1.1.x |
| mandrakesoft / mandrake_linux_corporate_server | 2.1 | 2.1.x |
| redhat / enterprise_linux | 2.1 | 2.1.x |
| redhat / linux_advanced_workstation | 2.1 | 2.1.x |
| redhat / linux | 7.2 | 7.2.x |
| redhat / linux | 8.0 | 8.0.x |
| redhat / linux | 7.3 | 7.3.x |
| mandrakesoft / mandrake_linux | 9.0 | 9.0.x |
| redhat / linux | 7.1 | 7.1.x |
| mandrakesoft / mandrake_linux | 9.1 | 9.1.x |
| redhat / linux | 9.0 | 9.0.x |
- http://lists.grok.org.uk/pipermail/full-disclosure/2003-June/005719.html
- http://marc.info/?l=bugtraq&m=105777963019186&w=2
- http://secunia.com/advisories/9037
- http://secunia.com/advisories/9038
- http://www.kb.cert.org/vuls/id/200132
- http://www.mandriva.com/security/advisories?name=MDKSA-2003:071
- http://www.redhat.com/support/errata/RHSA-2003-196.html
- http://www.redhat.com/support/errata/RHSA-2003-197.html
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A664
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime