← voltar
CVE-2002-0836

CVE-2002-0836

EPSS 8.0%
dvips converter for Postscript files in the tetex package calls the system() function insecurely, which allows remote attackers to execute arbitrary commands via certain print jobs, possibly involving fonts.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000537http://marc.info/?l=bugtraq&m=103497852330838&w=2http://marc.info/?l=bugtraq&m=104005975415582&w=2http://www.debian.org/security/2002/dsa-207http://www.iss.net/security_center/static/10365.phphttp://www.kb.cert.org/vuls/id/169841http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-070.phphttp://www.redhat.com/support/errata/RHSA-2002-194.htmlhttp://www.redhat.com/support/errata/RHSA-2002-195.htmlhttp://www.securityfocus.com/advisories/4567http://www.securityfocus.com/bid/5978