Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): cpe:2.3:a:gnu:a2ps:4.14:*:*:*:*:*:*:*
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2015-8107 |
Format string vulnerability in GNU a2ps 4.14 allows remote attackers to execute arbitrary code. Published: April 13, 2017; 10:59:00 AM -0400 |
V3.0: 7.8 HIGH V2.0: 6.8 MEDIUM |
CVE-2001-1593 |
The tempname_ensure function in lib/routines.h in a2ps 4.14 and earlier, as used by the spy_user function and possibly other functions, allows local users to modify arbitrary files via a symlink attack on a temporary file. Published: April 05, 2014; 5:55:06 PM -0400 |
V3.x:(not available) V2.0: 2.1 LOW |
CVE-2014-0466 |
The fixps script in a2ps 4.14 does not use the -dSAFER option when executing gs, which allows context-dependent attackers to delete arbitrary files or execute arbitrary commands via a crafted PostScript file. Published: April 03, 2014; 12:15:39 PM -0400 |
V3.x:(not available) V2.0: 6.8 MEDIUM |