ID de Prueba:	1.3.6.1.4.1.25623.1.0.57817
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDKSA-2007:024 (kdegraphics)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to kdegraphics announced via advisory MDKSA-2007:024. The Adobe PDF specification 1.3, as implemented by xpdf 3.0.1 patch 2, kpdf in KDE before 3.5.5, and other products, allows remote attackers to have an unknown impact, possibly including denial of service (infinite loop), arbitrary code execution, or memory corruption, via a PDF file with a (1) crafted catalog dictionary or (2) a crafted Pages attribute that references an invalid page tree node. The updated packages have been patched to correct this problem. Affected: 2007.0, Corporate 3.0, Corporate 4.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDKSA-2007:024 Risk factor : High CVSS Score: 6.8
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2007-0104 BugTraq ID: 21910 http://www.securityfocus.com/bid/21910 Bugtraq: 20070116 [KDE Security Advisory] kpdf/kword/xpdf denial of service vulnerability (Google Search) http://www.securityfocus.com/archive/1/457055/100/0/threaded Cert/CC Advisory: TA07-072A http://www.us-cert.gov/cas/techalerts/TA07-072A.html http://www.mandriva.com/security/advisories?name=MDKSA-2007:018 http://www.mandriva.com/security/advisories?name=MDKSA-2007:019 http://www.mandriva.com/security/advisories?name=MDKSA-2007:020 http://www.mandriva.com/security/advisories?name=MDKSA-2007:021 http://www.mandriva.com/security/advisories?name=MDKSA-2007:022 http://www.mandriva.com/security/advisories?name=MDKSA-2007:024 http://projects.info-pull.com/moab/MOAB-06-01-2007.html http://securitytracker.com/id?1017514 http://www.securitytracker.com/id?1017749 http://secunia.com/advisories/23791 http://secunia.com/advisories/23799 http://secunia.com/advisories/23808 http://secunia.com/advisories/23813 http://secunia.com/advisories/23815 http://secunia.com/advisories/23839 http://secunia.com/advisories/23844 http://secunia.com/advisories/23876 http://secunia.com/advisories/24204 http://secunia.com/advisories/24479 SuSE Security Announcement: SUSE-SR:2007:003 (Google Search) http://www.novell.com/linux/security/advisories/2007_3_sr.html http://www.ubuntu.com/usn/usn-410-1 http://www.ubuntu.com/usn/usn-410-2 http://www.vupen.com/english/advisories/2007/0203 http://www.vupen.com/english/advisories/2007/0212 http://www.vupen.com/english/advisories/2007/0244 http://www.vupen.com/english/advisories/2007/0930 XForce ISS Database: multiple-vendor-pdf-code-execution(31364) https://exchange.xforce.ibmcloud.com/vulnerabilities/31364
Copyright	Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.