CVE-2004-0888
Multiple integer overflows in xpdf 2.0 and 3.0, and other packages that use xpdf code such as CUPS, gpdf, and kdegraphics, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, a different set of vulnerabilities than those identified by CVE-2004-0889.
Date published : 2004-10-26
http://www.securityfocus.com/bid/11501
http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=000886