CVE-2001-1022
CVE-2001-1022
Format string vulnerability in pic utility in groff 1.16.1 and other versions, and jgroff before 1.15, allows remote attackers to bypass the -S option and execute arbitrary commands via format string specifiers in the plot command.
Affected products
n/a · n/apublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/21037unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000428https://exchange.xforce.ibmcloud.com/vulnerabilities/6918http://www.debian.org/security/2001/dsa-072http://www.debian.org/security/2002/dsa-107http://www.osvdb.org/1914http://www.redhat.com/support/errata/RHSA-2002-004.htmlhttp://www.securityfocus.com/archive/1/199706http://www.securityfocus.com/bid/3103