Untrusted search path vulnerability in the Gentoo package of Xpdf prior to 3.02-r2 allows local users to gain privileges via a Trojan horse xpdfrc file in the current working directory, related to an unset SYSTEM_XPDFRC macro in a Gentoo build process that uses the poppler library.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
foolabs xpdf 0.5a |
||
foolabs xpdf 0.7a |
||
foolabs xpdf 0.91a |
||
foolabs xpdf 0.91b |
||
foolabs xpdf 0.91c |
||
foolabs xpdf 0.92a |
||
foolabs xpdf 0.92b |
||
foolabs xpdf 0.92c |
||
foolabs xpdf 0.92d |
||
foolabs xpdf 0.92e |
||
foolabs xpdf 0.93a |
||
foolabs xpdf 0.93b |
||
foolabs xpdf 0.93c |
||
foolabs xpdf 1.00a |
||
glyphandcog xpdfreader |
||
glyphandcog xpdfreader 0.2 |
||
glyphandcog xpdfreader 0.3 |
||
glyphandcog xpdfreader 0.4 |
||
glyphandcog xpdfreader 0.5 |
||
glyphandcog xpdfreader 0.6 |
||
glyphandcog xpdfreader 0.7 |
||
glyphandcog xpdfreader 0.80 |
||
glyphandcog xpdfreader 0.90 |
||
glyphandcog xpdfreader 0.91 |
||
glyphandcog xpdfreader 0.93 |
||
glyphandcog xpdfreader 1.00 |
||
glyphandcog xpdfreader 1.01 |
||
glyphandcog xpdfreader 2.00 |
||
glyphandcog xpdfreader 2.01 |
||
glyphandcog xpdfreader 2.02 |
||
glyphandcog xpdfreader 2.03 |
||
glyphandcog xpdfreader 3.00 |
Vulmon