NASLDB: SSA-2006-142-01 : tetex PDF security
General
ID: 21583
Name: SSA-2006-142-01 : tetex PDF security
Summary: Checks for updated package(s) in /var/log/packages
Credits: –
Classification
Risk: –
CVSS: –
CVSS Base Vector: CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:P
CVSS Temporal Vector: –
Port: 0
Family: Slackware Local Security Checks
Type: Local
Description
New tetex packages are available for Slackware 10.2 and -current to
fix a possible security issue. teTeX-3.0 incorporates some code from
the xpdf program which has been shown to have various overflows that
could result in program crashes or possibly the execution of
arbitrary code as the teTeX user. This is especially important to
consider if teTeX is being used as part of a printer filter.
Exploiting
Exploit Available: –
Exploitability Ease: –
Sources
CVE: CVE-2005-3193
OSVDB: –
Bugtraq: –
scipID: –
Timeline
Vulnerability Disclosure: –
Patch Release: 2006/05/22
Plugin Release: 2006/05/23
Plugin
Version: 1.8
Filename: Slackware_SSA_2006-142-01.nasl
Filesize: 3317 bytes
MD5 Hash: 5e7b7c666b7c754f9969febef43b1320
Identification: Host/local_checks_enabled
Require Keys: Host/local_checks_enabled", "Host/Slackware/release", "Host/Slackware/packages
Dependencies: "ssh_get_info.nasl"
Copyright: –
- Letzte Plugins
- USN-1611-1 : thunderbird vulnerabilities
- USN-1610-1 : linux vulnerability
- USN-1609-1 : linux-ti-omap4 vulnerability
- SuSE 10 Security Update : PostgreSQL
- RHSA-2012-1364: bind97
- RHSA-2012-1363: bind
- RHSA-2012-1362: thunderbird
- RHSA-2012-1361: xulrunner
- Mandriva Linux Security Advisory : graphicsmagick
- FreeBSD : phpMyAdmin — Multiple XSS due to unescaped HTML output in Trigger, Procedure and Event pages and Fetching the version information from a non-SSL site is vulnerable to a MITM attack