Описание
zxpdf in xpdf before 3.02-19 as packaged in Debian unstable and 3.02-12+squeeze1 as packaged in Debian squeeze deletes temporary files insecurely, which allows remote attackers to delete arbitrary files via a crafted .pdf.gz file name.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 3.02-21build1 |
| hardy | ignored | end of life |
| lucid | ignored | end of life |
| maverick | ignored | end of life |
| natty | ignored | end of life |
| oneiric | not-affected | 3.02-21 |
| precise | not-affected | 3.02-21build1 |
| quantal | not-affected | 3.02-21build1 |
| raring | not-affected | 3.02-21build1 |
| saucy | not-affected | 3.02-21build1 |
Показывать по
Ссылки на источники
6.4 Medium
CVSS2
5.3 Medium
CVSS3
Связанные уязвимости
zxpdf in xpdf before 3.02-19 as packaged in Debian unstable and 3.02-12+squeeze1 as packaged in Debian squeeze deletes temporary files insecurely, which allows remote attackers to delete arbitrary files via a crafted .pdf.gz file name.
zxpdf in xpdf before 3.02-19 as packaged in Debian unstable and 3.02-1 ...
zxpdf in xpdf before 3.02-19 as packaged in Debian unstable and 3.02-12+squeeze1 as packaged in Debian squeeze deletes temporary files insecurely, which allows remote attackers to delete arbitrary files via a crafted .pdf.gz file name.
6.4 Medium
CVSS2
5.3 Medium
CVSS3