Executive Summary

Title Sun Alert 200778 On Sun Linux, an Unauthorized Remote User May be Able to Execute Arbitrary Commands With the "xpdf" User's Privileges
Name SUN-200778 First vendor Publication 2010-01-20
Vendor Sun Last vendor Modification 2010-01-20
Severity (Vendor) N/A Revision N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Cvss Base Score 7.5 Attack Range Network
Cvss Impact Score 6.4 Attack Complexity Low
Cvss Expoit Score 10 Authentication None Required
Calculate full CVSS 2.0 Vectors scores


Product: Sun Linux 5.0

On Sun Linux 5.0, a local or remote unprivileged user may be able to execute arbitrary commands with the privileges of the "xpdf" user if a local unprivileged user clicks on malicious hyperlinks in specifically crafted PDF documents.

This issue is described in Red Hat Advisory RHSA-2003:196-07, available at https://rhn.redhat.com/errata/RHSA-2003-196.html and CVE CAN-2003-0434, available at http://www.security-database.com/detail.php?cve=CVE-2003-0434.

State: Resolved
First released: 02-Jul-2003

Original Source

Url : http://blogs.sun.com/security/entry/sun_alert_200778_on_sun

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:664
Oval ID: oval:org.mitre.oval:def:664
Title: Code Execution Vulnerability in XPDF PDF Viewer
Description: Various PDF viewers including (1) Adobe Acrobat 5.06 and (2) Xpdf 1.01 allow remote attackers to execute arbitrary commands via shell metacharacters in an embedded hyperlink.
Family: unix Class: vulnerability
Reference(s): CVE-2003-0434
Version: 2
Platform(s): Red Hat Linux 9
Product(s): xpdf
Definition Synopsis:

CPE : Common Platform Enumeration

Application 1
Application 1
Os 2
Os 1
Os 3
Os 5
Os 1

Open Source Vulnerability Database (OSVDB)

Id Description
9293 Multiple PDF Viewers Embedded Hyperlink Shell Metacharacter Command Execution

Snort® IPS/IDS

Date Description
2014-01-10 Infinity CGI exploit scanner nph-exploitscanget.cgi access
RuleID : 2222-community - Revision : 20 - Type : SERVER-WEBAPP
2014-01-10 Infinity CGI exploit scanner nph-exploitscanget.cgi access
RuleID : 2222 - Revision : 20 - Type : SERVER-WEBAPP

Nessus® Vulnerability Scanner

Date Description
2004-07-31 Name : The remote Mandrake Linux host is missing a security update.
File : mandrake_MDKSA-2003-071.nasl - Type : ACT_GATHER_INFO
2004-07-06 Name : The remote Red Hat host is missing a security update.
File : redhat-RHSA-2003-197.nasl - Type : ACT_GATHER_INFO