Unrated severityNVD Advisory· Published Oct 20, 2000· Updated Apr 16, 2026

CVE-2000-0727

Description

xpdf PDF viewer client earlier than 0.91 does not properly launch a web browser for embedded URL's, which allows an attacker to execute arbitrary commands via a URL that contains shell metacharacters.

Affected products

Xpdf/Xpdf
cpe:2.3:a:xpdf:xpdf:0.90:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.calderasystems.com/support/security/advisories/CSSA-2000-031.0.txtnvdPatchVendor Advisory
www.debian.org/security/2000/20000910anvdPatchVendor Advisory
www.securityfocus.com/bid/1624nvdPatchVendor Advisory
marc.infonvd
marc.infonvd
www.redhat.com/support/errata/RHSA-2000-060.htmlnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000