Lucene search
GoogleOSV:DSA-192HistoryNov 08, 2002 - 12:00 a.m.
html2ps - arbitrary code execution
2002-11-0800:00:00
Google
osv.dev
5
0.04 Low
EPSS
Percentile
92.1%
The SuSE Security Team found a vulnerability in html2ps, an HTML to
PostScript converter, that opened files based on unsanitized input
insecurely. This problem can be exploited when html2ps is installed
as filter within lprng and the attacker has previously gained access
to the lp account.
These problems have been fixed in version 1.0b3-1.1 for the current
stable distribution (woody), in version 1.0b1-8.1 for the old stable
distribution (potato) and in version 1.0b3-2 for the unstable
distribution (sid).
We recommend that you upgrade your html2ps package.
References
Related
cve
cve
CVE-2002-1275
2002-11-12 05:00:00
openvas
openvas
Debian Security Advisory DSA 192-1 (html2ps)
2008-01-17 00:00:00
Debian Security Advisory DSA 192-1 (html2ps)
2008-01-17 00:00:00
Debian Security Advisory DSA 192-2 (html2ps)
2008-01-17 00:00:00
nessus
nessus
Debian DSA-192-1 : html2ps - arbitrary code execution
2004-09-29 00:00:00
cvelist
cvelist
CVE-2002-1275
2002-11-10 05:00:00
nvd
nvd
CVE-2002-1275
2002-11-12 05:00:00
debiancve
debiancve
CVE-2002-1275
2002-11-12 05:00:00
suse
suse
local privilege escalation, in lprng, html2ps
2002-10-31 11:02:36