Lucene search
K

14 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2014-0466

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The fixps script in a2ps 4.14 does not use the -dSAFER option when executing gs, which allows context- dependent attackers to delete arbitrary files or execute...

6.8CVSS7.6AI score0.02344EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.18 views

RHEL 5 : a2ps (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - a2ps: outputfile format string flaw CVE-2015-8107 - The fixps script in a2ps 4.14 does not use the -dSAFE...

7.8CVSS8.2AI score0.0286EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.18 views

Mageia: Security Advisory (MGASA-2014-0161)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS7.6AI score0.02344EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2014:0581-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.7AI score0.02344EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.20 views

openSUSE Security Update : a2ps (openSUSE-SU-2014:0499-1)

a2ps was updated to fix a security issue : fixps called ghostscript without -dSAFER, enabling postscript files processed by fixps to execute code on the system. CVE-2014-0466 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

6.8CVSS7.6AI score0.02344EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2014/05/12 12:0 a.m.27 views

Fedora Update for a2ps FEDORA-2014-4676

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS7.6AI score0.02344EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2014/05/12 12:0 a.m.18 views

Fedora Update for a2ps FEDORA-2014-4691

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS7.6AI score0.02344EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2014/05/09 12:0 a.m.22 views

Fedora 20 : a2ps-4.14-23.fc20 (2014-4691)

This update fixes a security problem in the fixps utility CVE-2014-0466. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...

6.8CVSS7.2AI score0.02344EPSS
Exploits1References3
Mageia
Mageia
added 2014/04/04 10:58 a.m.29 views

Updated a2ps packages fix CVE-2014-0466

Updated a2ps packages fix security vulnerability: Brian M. Carlson reported that a2ps's fixps script does not invoke gs with the -dSAFER option. Consequently executing fixps on a malicious PostScript file could result in files being deleted or arbitrary commands being executed with the privileges...

6.8CVSS7.7AI score0.02344EPSS
Exploits1References2
OSV
OSV
added 2014/04/04 10:58 a.m.9 views

MGASA-2014-0161 Updated a2ps packages fix CVE-2014-0466

Updated a2ps packages fix security vulnerability: Brian M. Carlson reported that a2ps's fixps script does not invoke gs with the -dSAFER option. Consequently executing fixps on a malicious PostScript file could result in files being deleted or arbitrary commands being executed with the privileges...

6.8CVSS6.7AI score0.02344EPSS
Exploits1References3
OSV
OSV
added 2014/04/03 4:15 p.m.6 views

CVE-2014-0466

The fixps script in a2ps 4.14 does not use the -dSAFER option when executing gs, which allows context-dependent attackers to delete arbitrary files or execute arbitrary commands via a crafted PostScript file...

6.9AI score
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2014/04/01 12:0 a.m.27 views

Debian DSA-2892-1 : a2ps - security update

Several vulnerabilities have been found in a2ps, an 'Anything to PostScript' converter and pretty-printer. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2001-1593 The spyuser function which is called when a2ps is invoked with the --debug flag insecurel...

6.8CVSS7.3AI score0.02344EPSS
Exploits1References9
OpenVAS
OpenVAS
added 2014/03/31 12:0 a.m.24 views

Debian Security Advisory DSA 2892-1 (a2ps - security update)

Several vulnerabilities have been found in a2ps, an Anything to PostScript converter and pretty-printer. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2001-1593 The spyuser function which is called when a2ps is invoked with the --debug flag insecurely use...

6.8CVSS0.02344EPSS
Exploits1References1
OSV
OSV
added 2014/03/31 12:0 a.m.24 views

DSA-2892-1 a2ps - security update

Bulletin has no description...

6.8CVSS7.4AI score0.02344EPSS
Exploits1
Rows per page
Query Builder