Test ID:	1.3.6.1.4.1.25623.1.1.10.2013.0332
Category:	Mageia Linux Local Security Checks
Title:	Mageia: Security Advisory (MGASA-2013-0332)
Summary:	The remote host is missing an update for the 'poppler' package(s) announced via the MGASA-2013-0332 advisory.
Description:	Summary: The remote host is missing an update for the 'poppler' package(s) announced via the MGASA-2013-0332 advisory. Vulnerability Insight: Updated poppler packages fix security vulnerabilities: Poppler is found to be affected by a stack based buffer overflow vulnerability in the pdfseparate utility. Successfully exploiting this issue could allow remote attackers to execute arbitrary code in the context of the affected application. Failed exploits may result in denial-of-service conditions (CVE-2013-4473). Poppler was found to have a user controlled format string vulnerability because it fails to sanitize user-supplied input. An attacker may exploit this issue to execute arbitrary code in the context of the vulnerable application. Failed exploit attempts will likely result in a denial-of-service condition (CVE-2013-4474). Affected Software/OS: 'poppler' package(s) on Mageia 2, Mageia 3. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2013-4473 BugTraq ID: 63368 http://www.securityfocus.com/bid/63368 http://security.gentoo.org/glsa/glsa-201401-21.xml http://www.openwall.com/lists/oss-security/2013/10/29/1 http://secunia.com/advisories/56567 http://www.ubuntu.com/usn/USN-2958-1 Common Vulnerability Exposure (CVE) ID: CVE-2013-4474 BugTraq ID: 63374 http://www.securityfocus.com/bid/63374
Copyright	Copyright (C) 2022 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.