CVE-2009-2461

The CVE-2009-2461 entry concerns mathtex.cgi in mathTeX, where, for downloads prior to 20090713, temporary file creation is not done securely. Multiple connected sources (NVD, OSV, Veracode, OSV Debian, Ubuntu, CVE list) corroborate the issue as a local-attack–vector vulnerability with unspecifie...

CVE-2009-1383

The getdirective function in mathtex.cgi in mathTeX, when downloaded before 20090713, allows remote attackers to execute arbitrary commands via shell metacharacters in the dpi tag...

CVE-2009-2460

CVE-2009-2460 affects mathTeX: the script mathtex.cgi contains multiple stack-based buffer overflows introduced by improper bounds checking, when downloaded before 2009-07-13. The incident is described as having unspecified impact and remote attack vectors in the CVE records, while Veracode notes...

CVE-2009-2461

mathtex.cgi in mathTeX, when downloaded before 20090713, does not securely create temporary files, which has unspecified impact and local attack vectors...

CVE-2009-2461

mathtex.cgi in mathTeX, when downloaded before 20090713, does not securely create temporary files, which has unspecified impact and local attack vectors...

CVE-2009-1383

CVE-2009-1383 concerns mathTeX: the getdirective function in mathtex.cgi mishandles input in the dpi tag, allowing remote command execution via shell metacharacters before 20090713. Multiple sources (Veracode, Tenable NASL, NVD/OSVUbuntu/PRION) describe remote code execution risk for mathTeX, wit...

CVE-2009-1383

The getdirective function in mathtex.cgi in mathTeX, when downloaded before 20090713, allows remote attackers to execute arbitrary commands via shell metacharacters in the dpi tag...