Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2006:229: evince Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the evince package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2006:229 (evince).
Stack-based buffer overflow in ps.c for evince allows user-assisted
attackers to execute arbitrary code via a PostScript (PS) file with
certain headers that contain long comments, as demonstrated using the
Packages have been patched to correct this issue.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:229
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.