Lucene search
+L

117 matches found

OSV
OSV
added 2017/04/13 2:59 p.m.4 views

DEBIAN-CVE-2015-8107

Format string vulnerability in GNU a2ps 4.14 allows remote attackers to execute arbitrary code...

7.8CVSS7.9AI score0.0286EPSS
Exploits0References1
OSV
OSV
added 2017/04/13 2:59 p.m.5 views

UBUNTU-CVE-2015-8107

Format string vulnerability in GNU a2ps 4.14 allows remote attackers to execute arbitrary code...

7.8CVSS6.1AI score0.0286EPSS
Exploits0References2
CVE
CVE
added 2017/04/13 2:0 p.m.58 views

CVE-2015-8107

CVE-2015-8107 affects GNU a2ps

7.8CVSS7.7AI score0.0286EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2017/04/13 2:0 p.m.44 views

CVE-2015-8107

Format string vulnerability in GNU a2ps 4.14 allows remote attackers to execute arbitrary code...

7.8CVSS7.9AI score0.0286EPSS
Exploits0
Cvelist
Cvelist
added 2017/04/13 2:0 p.m.30 views

CVE-2015-8107

Format string vulnerability in GNU a2ps 4.14 allows remote attackers to execute arbitrary code...

7.8AI score0.0286EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/01/30 12:0 a.m.24 views

GLSA-201701-67 : a2ps: Arbitrary code execution

The remote host is affected by the vulnerability described in GLSA-201701-67 a2ps: Arbitrary code execution a2ps fixps script does not invoke gs with the -dSAFER option. Impact : Remote attackers, by enticing a user to process a specially crafted PostScript file, could delete arbitrary files or...

6.8CVSS7.8AI score0.02344EPSS
Exploits1References2
Gentoo Linux
Gentoo Linux
added 2017/01/29 12:0 a.m.45 views

a2ps: Arbitrary code execution

Background a2ps is an Any to PostScript filter. Description a2ps’ fixps script does not invoke gs with the -dSAFER option. Impact Remote attackers, by enticing a user to process a specially crafted PostScript file, could delete arbitrary files or execute arbitrary code with the privileges of the...

6.8CVSS7.9AI score0.02344EPSS
Exploits1
BDU FSTEC
BDU FSTEC
added 2016/07/07 12:0 a.m.8 views

Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the a2ps package of the Debian GNU/Linux operating system may lead to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

6.8CVSS7.1AI score0.02344EPSS
Exploits1References6Affected Software1
seebug.org
seebug.org
added 2015/11/25 12:0 a.m.20 views

GNU a2ps格式化字符串拒绝服务漏洞

No description provided by source...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/11/23 12:0 a.m.23 views

FreeBSD : a2ps -- format string vulnerability (e359051d-90bd-11e5-bd18-002590263bf5)

Jong-Gwon Kim reports : When user runs a2ps with malicious crafted proa2ps prologue file, an attacker can execute arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright...

7.8CVSS7.7AI score0.0286EPSS
Exploits0References3
CNVD
CNVD
added 2015/11/22 12:0 a.m.6 views

GNU a2ps Formatted String Denial of Service Vulnerability

GNU a2ps is a package developed by the GNU Project that supports the conversion of any type of file into a PostScript file. The GNU a2ps formatted-printing function fails to adequately filter user input that is used as a formatting descriptor, allowing an attacker to exploit the vulnerability to...

7.8CVSS6.8AI score0.0286EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2015/11/16 12:0 a.m.22 views

a2ps -- format string vulnerability

Jong-Gwon Kim reports: When user runs a2ps with malicious crafted proa2ps prologue file, an attacker can execute arbitrary code...

7.8CVSS7.9AI score0.0286EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2015/10/30 10:14 a.m.26 views

CVE-2004-1170

a2ps 4.13 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename...

10CVSS8AI score0.15981EPSS
Exploits1References2
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.28 views

GNU a2ps "Anything to PostScript" Local Exploit (not suid)

No description provided by source. / Not added to Local Non Poc section /str0ke / include stdio.h include stdlib.h include errno.h // by lizard / lizstyleatgmail.com // greets go to slider/trog for helpin me // not suid by default ; define VULNTHING /usr/bin/a2ps define DEFRET 0xbffffffa - strlen...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.14 views

GNU a2ps 4.13 File Name Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11025/info Reportedly GNU a2ps is affected by a filename command-execution vulnerability. This issue is due to the application's failure to properly sanitize filenames. An attacker might leverage this issue to execute...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.20 views

openSUSE Security Update : a2ps (openSUSE-SU-2014:0499-1)

a2ps was updated to fix a security issue : fixps called ghostscript without -dSAFER, enabling postscript files processed by fixps to execute code on the system. CVE-2014-0466 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

6.8CVSS7.6AI score0.02344EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2014/05/12 12:0 a.m.19 views

Fedora Update for a2ps FEDORA-2014-4676

Check for the Version of a2ps OpenVAS Vulnerability Test Fedora Update for a2ps FEDORA-2014-4676 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

6.8CVSS0.1AI score0.02344EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2014/05/12 12:0 a.m.25 views

Fedora Update for a2ps FEDORA-2014-4691

Check for the Version of a2ps OpenVAS Vulnerability Test Fedora Update for a2ps FEDORA-2014-4691 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

6.8CVSS0.1AI score0.02344EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2014/05/12 12:0 a.m.18 views

Fedora Update for a2ps FEDORA-2014-4691

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS7.6AI score0.02344EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2014/05/12 12:0 a.m.27 views

Fedora Update for a2ps FEDORA-2014-4676

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS7.6AI score0.02344EPSS
Exploits1References2
Rows per page
Query Builder