Mandriva Update For Cups MDKSA-2007:165 (cups) Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

Maurycy Prodeus found an integer overflow vulnerability in the way various PDF viewers processed PDF files. An attacker could create a malicious PDF file that could cause cups to crash and possibly execute arbitrary code open a user opening the file. This update provides packages which are patched to prevent these issues.

Affected

cups on Mandriva Linux 2007.0, Mandriva Linux 2007.0/X86_64, Mandriva Linux 2007.1, Mandriva Linux 2007.1/X86_64

Severity

Classification

CVE CVE-2007-3387
CVSS Base Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Mandrake Security Advisory MDVSA-2009:201 (fetchmail)
Mandrake Security Advisory MDVSA-2009:010 (qemu)
Mandrake Security Advisory MDVSA-2009:119 (kernel)
Mandrake Security Advisory MDVSA-2009:026-1 (phpMyAdmin)
Mandrake Security Advisory MDVSA-2009:114 (ipsec-tools)

Mandriva Update for cups MDKSA-2007:165 (cups)

Take action and discover your vulnerabilities