4.6

CVE-2004-1184

The EPSF pipe support in enscript 1.6.3 allows remote attackers or local users to execute arbitrary commands via shell metacharacters.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
GnuEnscript Version1.4
GnuEnscript Version1.5
GnuEnscript Version1.6
GnuEnscript Version1.6.1
GnuEnscript Version1.6.2
GnuEnscript Version1.6.3
GnuEnscript Version1.6.4
SgiPropack Version3.0
RedhatFedora Core Versioncore_2.0
RedhatFedora Core Versioncore_3.0
SuseSuse Linux Version1.0
SuseSuse Linux Version2.0
SuseSuse Linux Version3.0
SuseSuse Linux Version4.0
SuseSuse Linux Version4.2
SuseSuse Linux Version4.3
SuseSuse Linux Version4.4
SuseSuse Linux Version4.4.1
SuseSuse Linux Version5.0
SuseSuse Linux Version5.1
SuseSuse Linux Version5.2
SuseSuse Linux Version5.3
SuseSuse Linux Version6.0
SuseSuse Linux Version6.1
SuseSuse Linux Version6.1 Updatealpha
SuseSuse Linux Version6.2
SuseSuse Linux Version6.3
SuseSuse Linux Version6.3 Editionppc
SuseSuse Linux Version6.3 Updatealpha
SuseSuse Linux Version6.4
SuseSuse Linux Version6.4 Editioni386
SuseSuse Linux Version6.4 Editionppc
SuseSuse Linux Version6.4 Updatealpha
SuseSuse Linux Version7.0
SuseSuse Linux Version7.0 Editioni386
SuseSuse Linux Version7.0 Editionppc
SuseSuse Linux Version7.0 Editionsparc
SuseSuse Linux Version7.0 Updatealpha
SuseSuse Linux Version7.1
SuseSuse Linux Version7.1 Editionspa
SuseSuse Linux Version7.1 Editionsparc
SuseSuse Linux Version7.1 Editionx86
SuseSuse Linux Version7.1 Updatealpha
SuseSuse Linux Version7.2
SuseSuse Linux Version7.2 Editioni386
SuseSuse Linux Version7.3
SuseSuse Linux Version7.3 Editioni386
SuseSuse Linux Version7.3 Editionppc
SuseSuse Linux Version7.3 Editionsparc
SuseSuse Linux Version8.0
SuseSuse Linux Version8.0 Editioni386
SuseSuse Linux Version8.1
SuseSuse Linux Version8.2
SuseSuse Linux Version9.0
SuseSuse Linux Version9.0 Editionx86_64
SuseSuse Linux Version9.1
SuseSuse Linux Version9.1 Editionx86_64
SuseSuse Linux Version9.2
SuseSuse Linux Version9.2 Editionx86_64
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.18% 0.637
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.6 3.9 6.4
AV:L/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://lists.apple.com/archives/security-announce/2009/May/msg00002.html
http://secunia.com/advisories/35074
http://securitytracker.com/id?1012965
http://support.apple.com/kb/HT3549
http://www.debian.org/security/2005/dsa-654
Patch
Vendor Advisory
http://www.gentoo.org/security/en/glsa/glsa-200502-03.xml
Patch
Vendor Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2005:033
http://www.redhat.com/support/errata/RHSA-2005-040.html
Patch
Vendor Advisory
http://www.securityfocus.com/archive/1/419768/100/0/threaded
http://www.securityfocus.com/archive/1/435199/100/0/threaded
http://www.securityfocus.com/bid/12329
http://www.us-cert.gov/cas/techalerts/TA09-133A.html
US Government Resource
http://www.vupen.com/english/advisories/2009/1297
https://usn.ubuntu.com/68-1/
https://exchange.xforce.ibmcloud.com/vulnerabilities/19012
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9658