CVE-2000-0727

Published: Oct 13, 2000

Modified: Aug 8, 2024

PUBLISHED

Description

xpdf PDF viewer client earlier than 0.91 does not properly launch a web browser for embedded URL's, which allows an attacker to execute arbitrary commands via a URL that contains shell metacharacters.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

20000829 MDKSA-2000:041 - xpdf update

mailing-list

x_refsource_BUGTRAQ

20000913 Conectiva Linux Security Announcement - xpdf

mailing-list

x_refsource_BUGTRAQ

20000910 xpdf: local exploit

vendor-advisory

x_refsource_DEBIAN

1624

vdb-entry

x_refsource_BID

CSSA-2000-031.0

vendor-advisory

x_refsource_CALDERA

RHSA-2000:060

vendor-advisory

x_refsource_REDHAT

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2000-0727

Description

Affected Products

References