188 matches found
FreeBSD Ports: enscript-a4, enscript-letter, enscript-letterdj
The remote host is missing an update to the system as announced in the referenced advisory. VID a1126054-b57c-11dd-8892-0017319806e7 OpenVAS Vulnerability Test $ Description: Auto generated from VID a1126054-b57c-11dd-8892-0017319806e7 Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
FreeBSD : enscript -- arbitrary code execution vulnerability (a1126054-b57c-11dd-8892-0017319806e7)
Ulf Harnhammar of Secunia Research reports : Stack-based buffer overflow in the readspecialescape function in src/psgen.c in GNU Enscript 1.6.1 and 1.6.4 beta, when the -e aka special escapes processing option is enabled, allows user-assisted remote attackers to execute arbitrary code via a craft...
[SECURITY] Fedora 9 Update: enscript-1.6.4-10.fc9
GNU enscript is a free replacement for Adobe's Enscript program. Enscript converts ASCII files to PostScriptTM and spools generated PostScript output to the specified printer or saves it to a file. Enscript can be extended to handle different output media and includes many options for customizing...
[SECURITY] Fedora 8 Update: enscript-1.6.4-9.fc8
GNU enscript is a free replacement for Adobe's Enscript program. Enscript converts ASCII files to PostScriptTM and spools generated PostScript output to the specified printer or saves it to a file. Enscript can be extended to handle different output media and includes many options for customizing...
Fedora 9 : enscript-1.6.4-10.fc9 (2008-9372)
There were found various buffer overflows in enscript. This update fixes CVE-2008-3863 and CVE-2008-4306 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much ...
openSUSE 10 Security Update : enscript (enscript-5719)
This update of enscript fixes buffer overflows in the setfilename CVE-2008-3863, processfile and readspecialescape function that can be exploited during file processing. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...
SuSE 10 Security Update : enscript (ZYPP Patch Number 5715)
This update of enscript fixes buffer overflows in the setfilename CVE-2008-3863, processfile and readspecialescape function that can be exploited during file processing. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...
Fedora 8 : enscript-1.6.4-9.fc8 (2008-9351)
There were found various buffer overflows in enscript. This update fixes CVE-2008-3863 and CVE-2008-4306 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much ...
CVE-2008-4306
Buffer overflow in enscript before 1.6.4 has unknown impact and attack vectors, possibly related to the font escape sequence...
DEBIAN-CVE-2008-4306
Buffer overflow in enscript before 1.6.4 has unknown impact and attack vectors, possibly related to the font escape sequence...
CVE-2008-4306
Buffer overflow in enscript before 1.6.4 has unknown impact and attack vectors, possibly related to the font escape sequence...
CVE-2008-4306
Buffer overflow in enscript before 1.6.4 has unknown impact and attack vectors, possibly related to the font escape sequence...
Buffer overflow
Buffer overflow in enscript before 1.6.4 has unknown impact and attack vectors, possibly related to the font escape sequence...
CVE-2008-4306
Buffer overflow in enscript before 1.6.4 has unknown impact and attack vectors, possibly related to the font escape sequence...
CVE-2008-4306
Buffer overflow in enscript before 1.6.4 has unknown impact and attack vectors, possibly related to the font escape sequence...
CVE-2008-4306
CVE-2008-4306 is a buffer overflow in GNU enscript prior to 1.6.4 (noted in multiple advisories). Vulnerability arises from the handling of special escapes (-e), specifically in the read_special_escape path, enabling potential arbitrary code execution when a crafted ASCII file is opened with ensc...
USN-660-1: enscript vulnerability
Ulf Härnhammar discovered multiple stack overflows in enscript's handling of special escape arguments. If a user or automated system were tricked into processing a malicious file with the "-e" option enabled, a remote attacker could execute arbitrary code or cause enscript to crash, possibly...
Secunia Research: GNU Enscript "setfilename" Special Escape Buffer Overflow
====================================================================== Secunia Research 22/10/2008 - GNU Enscript "setfilename" Special Escape Buffer Overflow - ====================================================================== Table of Contents Affected...
GNU enscript buffer overflow
Buffer overflow on text file conversion...
CVE-2008-3863
Stack-based buffer overflow in the readspecialescape function in src/psgen.c in GNU Enscript 1.6.1 and 1.6.4 beta, when the -e aka special escapes processing option is enabled, allows user-assisted remote attackers to execute arbitrary code via a crafted ASCII file, related to the setfilename...