CVE-2003-0434

EPSS 29.87%
Veröffentlicht 24.07.2003 04:00:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

Various PDF viewers including (1) Adobe Acrobat 5.06 and (2) Xpdf 1.01 allow remote attackers to execute arbitrary commands via shell metacharacters in an embedded hyperlink.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 12

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Adobe ≫ Acrobat Version5.0.6

Xpdf ≫ Xpdf Version1.1

Mandrakesoft ≫ Mandrake Linux Version9.0

Mandrakesoft ≫ Mandrake Linux Version9.1

Mandrakesoft ≫ Mandrake Linux Corporate Server Version2.1

Redhat ≫ Enterprise Linux Version2.1 Editionadvanced_server

Redhat ≫ Enterprise Linux Version2.1 Editionenterprise_server

Redhat ≫ Enterprise Linux Version2.1 Editionworkstation

Redhat ≫ Linux Version7.1

Redhat ≫ Linux Version7.2

Redhat ≫ Linux Version7.3

Redhat ≫ Linux Version8.0

Redhat ≫ Linux Version9.0

Redhat ≫ Linux Advanced Workstation Version2.1 Editionitanium

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	29.87%	0.965

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://lists.grok.org.uk/pipermail/full-disclosure/2003-June/005719.html

http://marc.info/?l=bugtraq&m=105777963019186&w=2

http://secunia.com/advisories/9037

http://secunia.com/advisories/9038

http://www.kb.cert.org/vuls/id/200132

US Government Resource

http://www.mandriva.com/security/advisories?name=MDKSA-2003:071

http://www.redhat.com/support/errata/RHSA-2003-196.html

Patch

Vendor Advisory

http://www.redhat.com/support/errata/RHSA-2003-197.html

Patch

Vendor Advisory

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A664

https://nvd.nist.gov/vuln/detail/CVE-2003-0434

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2003-0434

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2003-0434

EUVD