Summary
The remote host is missing an update to poppler
announced via advisory DSA 2116-1.
Solution
https://secure1.securityspace.com/smysecure/catid.html?in=DSA%202116-1
Insight
Joel Voss of Leviathan Security Group discovered two vulnerabilities in the Poppler PDF rendering library, which may lead to the execution of arbitrary code if a malformed PDF file is opened.
For the stable distribution (lenny), these problems have been fixed in version 0.8.7-4.
For the unstable distribution (sid), these problems will be fixed soon.
We recommend that you upgrade your poppler packages.
Severity
Classification
-
CVE CVE-2010-3702, CVE-2010-3704 -
CVSS Base Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P
Related Vulnerabilities