Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gnu a2ps vulnerabilities and exploits
(subscribe to this query)
2.1
CVSSv2
CVE-2001-1593
The tempname_ensure function in lib/routines.h in a2ps 4.14 and previous versions, as used by the spy_user function and possibly other functions, allows local users to modify arbitrary files via a symlink attack on a temporary file.
Gnu A2ps 4.10.4
Gnu A2ps
Gnu A2ps 4.13b
Gnu A2ps 4.13
Gnu A2ps 4.10.3
Gnu A2ps 4.12
6.8
CVSSv2
CVE-2014-0466
The fixps script in a2ps 4.14 does not use the -dSAFER option when executing gs, which allows context-dependent malicious users to delete arbitrary files or execute arbitrary commands via a crafted PostScript file.
Gnu A2ps 4.14
6.8
CVSSv2
CVE-2015-8107
Format string vulnerability in GNU a2ps 4.14 allows remote malicious users to execute arbitrary code.
Gnu A2ps 4.14
2.1
CVSSv2
CVE-2004-1377
The (1) fixps (aka fixps.in) and (2) psmandup (aka psmandup.in) scripts in a2ps prior to 4.13 allow local users to overwrite arbitrary files via a symlink attack on temporary files.
Gnu A2ps 4.13b
Gnu A2ps 4.13
Turbolinux Turbolinux Server 8.0
Turbolinux Turbolinux Workstation 7.0
Turbolinux Turbolinux Home
Turbolinux Turbolinux Server 7.0
Turbolinux Turbolinux Workstation 8.0
10
CVSSv2
CVE-2004-1170
a2ps 4.13 allows remote malicious users to execute arbitrary commands via shell metacharacters in the filename.
Gnu A2ps 4.13
Gnu A2ps 4.13b
Sun Java Desktop System 2.0
Sun Java Desktop System 2003
Suse Suse Linux 9.0
Suse Suse Linux 9.1
Suse Suse Linux 8.1
Suse Suse Linux 8.2
Suse Suse Linux 8
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32886
insecure direct object reference
CVE-2024-34342
file inclusion
CVE-2024-34562
CVE-2024-34347
CVE-2024-26026
CVE-2024-4647
unprivileged
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started