2 matches found
CVE-2004-1377
The CVE-2004-1377 issue affects the a2ps package: the fixps (fixps.in) and psmandup (psmandup.in) scripts allow local users to overwrite arbitrary files via a symlink attack on temporary files, with impact being partial integrity if exploited. Documentation in multiple advisories confirms this vu...
CVE-2001-1593
CVE-2001-1593 affects the a2ps package (versions 4.14 and earlier). The vulnerability is in the tempname_ensure function (lib/routines.h), used by the spy_user function, allowing local users to modify arbitrary files via a symlink attack on a temporary file. Impact is local file modification with...