CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - a2ps: outputfile format string flaw CVE-2015-8107 - The fixps script in a2ps 4.14 does not use the -dSAFE...

7.8CVSS8.2AI score0.0286EPSS

Exploits1References2

Tenable Nessus•added 2024/06/03 12:0 a.m.•18 views

RHEL 5 : a2ps (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - a2ps: outputfile format string flaw CVE-2015-8107 - The fixps script in a2ps 4.14 does not use the -dSAFE...

7.8CVSS8.2AI score0.0286EPSS

Exploits1References2

Tenable Nessus•added 2023/03/09 12:0 a.m.•25 views

Solaris 10 (sparc) : 153091-01

SunOS 5.10: a2ps patch. Date this patch was last updated by Sun : Jul/18/22 %NASLMINLEVEL 80900 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include"compat.inc"; if description scriptid172378; scriptversion"1.0";...

7AI score

Exploits0References1

SUSE CVE•added 2023/02/15 6:22 a.m.•3 views

SUSE CVE-2001-1593

The tempnameensure function in lib/routines.h in a2ps 4.14 and earlier, as used by the spyuser function and possibly other functions, allows local users to modify arbitrary files via a symlink attack on a temporary file...

2.1CVSS6.7AI score0.00396EPSS

Exploits0References3

SUSE CVE•added 2023/02/15 6:19 a.m.•2 views

SUSE CVE-2004-1170

a2ps 4.13 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename...

10CVSS7.8AI score0.15981EPSS

Exploits1References3

SUSE CVE•added 2023/02/15 5:32 a.m.•3 views

SUSE CVE-2014-0466

The fixps script in a2ps 4.14 does not use the -dSAFER option when executing gs, which allows context-dependent attackers to delete arbitrary files or execute arbitrary commands via a crafted PostScript file...

6.8CVSS7.5AI score0.02324EPSS

Exploits1References4

SUSE CVE•added 2023/02/15 5:12 a.m.•3 views

SUSE CVE-2015-8107

Format string vulnerability in GNU a2ps 4.14 allows remote attackers to execute arbitrary code...

7.8CVSS7.9AI score0.0286EPSS

Exploits0References3

OpenVAS•added 2022/01/28 12:0 a.m.•17 views

Mageia: Security Advisory (MGASA-2014-0161)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS7.6AI score0.02324EPSS

Exploits1References4

ArchLinux•added 2020/05/06 12:0 a.m.•23 views

[ASA-202005-4] a2ps: multiple issues

Arch Linux Security Advisory ASA-202005-4 ========================================= Severity: High Date : 2020-05-06 CVE-ID : CVE-2014-0466 CVE-2015-8107 Package : a2ps Type : multiple issues Remote : No Link : https://security.archlinux.org/AVG-1150 Summary ======= The package a2ps before versio...

7.8CVSS8.2AI score0.0286EPSS

Exploits1References5