Vulnerability in Gnu Enscript
CVE-2004-1184
The EPSF pipe support in enscript 1.6.3 allows remote attackers or local users to execute arbitrary commands via shell metacharacters.
EPSS: 0.012 (63.7th percentile) — read the EPSS interpretation.
Affected products
- Gnu Enscript — versions 1.4, 1.5, 1.6
- Sgi Propack — versions 3.0
- Redhat Fedora_core — versions core_2.0, core_3.0
- Suse Suse_linux — versions 1.0, 2.0, 3.0
- N/a — versions n/a
References
- cve@mitre.org (x_refsource_OVAL, signature, vdb-entry)
- cve@mitre.org (x_refsource_FEDORA, vendor-advisory)
- cve@mitre.org (vdb-entry, x_refsource_BID)
- cve@mitre.org (x_refsource_CONFIRM)
- cve@mitre.org (vendor-advisory, x_refsource_MANDRAKE)
- cve@mitre.org (x_refsource_UBUNTU, vendor-advisory)
- cve@mitre.org (vdb-entry, x_refsource_SECTRACK)
- cve@mitre.org (x_refsource_SECUNIA, third-party-advisory)
- cve@mitre.org (vendor-advisory, Patch, x_refsource_DEBIAN, Vendor Advisory)
- cve@mitre.org (vendor-advisory, x_refsource_APPLE)