Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2004-1185HistoryJan 21, 2005 - 5:00 a.m.
CVE-2004-1185
2005-01-2105:00:00
Debian Security Bug Tracker
security-tracker.debian.org
5
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.017 Low
EPSS
Percentile
87.8%
Enscript 1.6.3 does not sanitize filenames, which allows remote attackers or local users to execute arbitrary commands via crafted filenames.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | enscript | < 1.6.4-6 | enscript_1.6.4-6_all.deb |
| Debian | 11 | all | enscript | < 1.6.4-6 | enscript_1.6.4-6_all.deb |
| Debian | 10 | all | enscript | < 1.6.4-6 | enscript_1.6.4-6_all.deb |
| Debian | 999 | all | enscript | < 1.6.4-6 | enscript_1.6.4-6_all.deb |
| Debian | 13 | all | enscript | < 1.6.4-6 | enscript_1.6.4-6_all.deb |
Related
cve
cve
CVE-2004-1185
2005-01-21 05:00:00
ubuntucve
ubuntucve
CVE-2004-1185
2005-01-21 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-654-1)
2008-01-17 00:00:00
Gentoo Security Advisory GLSA 200502-03 (enscript)
2008-09-24 00:00:00
Debian Security Advisory DSA 654-1 (enscript)
2008-01-17 00:00:00
debian
debian
[SECURITY] [DSA 654-1] New enscript packages fix several vulnerabilities
2005-01-21 14:06:09
[SECURITY] [DSA 654-1] New enscript packages fix several vulnerabilities
2005-01-21 14:06:09
osv
osv
enscript - several
2005-01-21 00:00:00
gentoo
gentoo
enscript: Multiple vulnerabilities
2005-02-02 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 654-1] New enscript packages fix several vulnerabilities
2005-01-23 00:00:00
About the security content of Security Update 2009-002 / Mac OS X v10.5.7
2009-05-14 00:00:00
nessus
nessus
Fedora Core 2 : enscript-1.6.1-25.2 (2005-015)
2005-01-27 00:00:00
GLSA-200502-03 : enscript: Multiple vulnerabilities
2005-02-14 00:00:00
Ubuntu 4.10 : enscript vulnerabilities (USN-68-1)
2006-01-15 00:00:00
ubuntu
ubuntu
enscript vulnerabilities
2005-01-24 00:00:00
freebsd
freebsd
enscript -- multiple vulnerabilities
2005-02-02 00:00:00
redhat
redhat
(RHSA-2005:039) enscript security update
2005-02-01 00:00:00
(RHSA-2005:040) enscript security update
2005-02-15 00:00:00
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.017 Low
EPSS
Percentile
87.8%
Related for DEBIANCVE:CVE-2004-1185