Lucene search
K

117 matches found

osv
osv
added 2014/04/03 4:15 p.m.1 views

DEBIAN-CVE-2014-0466

The fixps script in a2ps 4.14 does not use the -dSAFER option when executing gs, which allows context-dependent attackers to delete arbitrary files or execute arbitrary commands via a crafted PostScript file...

6.8CVSS7.5AI score0.02344EPSS
Exploits1References1
nvd
nvd
added 2014/04/03 4:15 p.m.20 views

CVE-2014-0466

The fixps script in a2ps 4.14 does not use the -dSAFER option when executing gs, which allows context-dependent attackers to delete arbitrary files or execute arbitrary commands via a crafted PostScript file...

6.8CVSS7.6AI score0.02344EPSS
Exploits1References5
osv
osv
added 2014/04/03 4:15 p.m.4 views

UBUNTU-CVE-2014-0466

The fixps script in a2ps 4.14 does not use the -dSAFER option when executing gs, which allows context-dependent attackers to delete arbitrary files or execute arbitrary commands via a crafted PostScript file...

6.8CVSS6AI score0.02344EPSS
Exploits1References2
ubuntucve
ubuntucve
added 2014/04/03 4:15 p.m.23 views

CVE-2014-0466

The fixps script in a2ps 4.14 does not use the -dSAFER option when executing gs, which allows context-dependent attackers to delete arbitrary files or execute arbitrary commands via a crafted PostScript file...

6.8CVSS7.3AI score0.02344EPSS
Exploits1References1
prion
prion
added 2014/04/03 4:15 p.m.13 views

Design/Logic Flaw

The fixps script in a2ps 4.14 does not use the -dSAFER option when executing gs, which allows context-dependent attackers to delete arbitrary files or execute arbitrary commands via a crafted PostScript file...

6.8CVSS7.5AI score0.02344EPSS
Exploits1References5Affected Software1
alpinelinux
alpinelinux
added 2014/04/03 4:15 p.m.84 views

CVE-2014-0466

The fixps script in a2ps 4.14 does not use the -dSAFER option when executing gs, which allows context-dependent attackers to delete arbitrary files or execute arbitrary commands via a crafted PostScript file...

6.8CVSS7.8AI score0.02344EPSS
Exploits1
cve
cve
added 2014/04/03 3:0 p.m.77 views

CVE-2014-0466

CVE-2014-0466 affects the a2ps package. The underlying issue is in the fixps script: it does not invoke Ghostscript with the -dSAFER option, enabling a crafted PostScript file to trigger arbitrary commands or delete files. Documented impact across multiple distros states remote attackers could ex...

6.8CVSS7.5AI score0.02344EPSS
Exploits1References5Affected Software1
cvelist
cvelist
added 2014/04/03 3:0 p.m.39 views

CVE-2014-0466

The fixps script in a2ps 4.14 does not use the -dSAFER option when executing gs, which allows context-dependent attackers to delete arbitrary files or execute arbitrary commands via a crafted PostScript file...

7.6AI score0.02344EPSS
Exploits1References5
debiancve
debiancve
added 2014/04/03 3:0 p.m.64 views

CVE-2014-0466

The fixps script in a2ps 4.14 does not use the -dSAFER option when executing gs, which allows context-dependent attackers to delete arbitrary files or execute arbitrary commands via a crafted PostScript file...

6.8CVSS7.7AI score0.02344EPSS
Exploits1
nessus
nessus
added 2014/04/01 12:0 a.m.27 views

Debian DSA-2892-1 : a2ps - security update

Several vulnerabilities have been found in a2ps, an 'Anything to PostScript' converter and pretty-printer. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2001-1593 The spyuser function which is called when a2ps is invoked with the --debug flag insecurel...

6.8CVSS7.3AI score0.02344EPSS
Exploits1References9
debian
debian
added 2014/03/31 6:46 p.m.63 views

[SECURITY] [DSA 2892-1] a2ps security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2892-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso March 31, 2014 http://www.debian.org/security/faq -...

6.8CVSS6.8AI score0.02344EPSS
Exploits1
debian
debian
added 2014/03/31 6:46 p.m.55 views

[SECURITY] [DSA 2892-1] a2ps security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2892-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso March 31, 2014 http://www.debian.org/security/faq -...

6.8CVSS1.6AI score0.02344EPSS
Exploits1
osv
osv
added 2014/03/31 12:0 a.m.24 views

DSA-2892-1 a2ps - security update

Bulletin has no description...

6.8CVSS7.4AI score0.02344EPSS
Exploits1
openvas
openvas
added 2014/03/31 12:0 a.m.24 views

Debian Security Advisory DSA 2892-1 (a2ps - security update)

Several vulnerabilities have been found in a2ps, an Anything to PostScript converter and pretty-printer. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2001-1593 The spyuser function which is called when a2ps is invoked with the --debug flag insecurely use...

6.8CVSS0.02344EPSS
Exploits1References1
openvas
openvas
added 2014/03/30 12:0 a.m.23 views

Debian: Security Advisory (DSA-2892-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS7.6AI score0.02344EPSS
Exploits1References3
nessus
nessus
added 2010/07/30 12:0 a.m.10 views

MDVA-2010:001 : a2ps

The a2ps package as provided in Mandriva Linux 2010.0 contains improvements concerning paper auto-detection, locale recognition and security issues. The locale recognition prevented the application to perform correctly, this update fixes the issue. %NASLMINLEVEL 70300 @DEPRECATED@ This script has...

7AI score
Exploits0References1
openvas
openvas
added 2010/01/15 12:0 a.m.17 views

Mandriva Update for a2ps MDVA-2010:001 (a2ps)

Check for the Version of a2ps OpenVAS Vulnerability Test Mandriva Update for a2ps MDVA-2010:001 a2ps Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

0.1AI score
Exploits0References2
openvas
openvas
added 2010/01/15 12:0 a.m.12 views

Mandriva Update for a2ps MDVA-2010:001 (a2ps)

Check for the Version of a2ps OpenVAS Vulnerability Test Mandriva Update for a2ps MDVA-2010:001 a2ps Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

0.1AI score
Exploits0References2
openvas
openvas
added 2009/10/10 12:0 a.m.13 views

SLES9: Security update for a2ps

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: a2ps More details may also be found by searching for keyword 5013784 within the SuSE Enterprise Server 9 patch database at...

Exploits0
openvas
openvas
added 2009/10/10 12:0 a.m.9 views

SLES9: Security update for a2ps

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: a2ps More details may also be found by searching for keyword 5013784 within the SuSE Enterprise Server 9 patch database linked in the references...

7.5AI score
Exploits0References1
Rows per page
Query Builder