Published: 31/08/2001 Updated: 10/10/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

The default configuration of the DVI print filter (dvips) in Red Hat Linux 7.0 and previous versions does not run dvips in secure mode when dvips is executed by lpd, which could allow remote malicious users to gain privileges by printing a DVI file that contains malicious commands.

Vulnerable Product	Search on Vulmon	Subscribe to Product
redhat linux 6.2
redhat linux 7.0
redhat linux 7.1

source: wwwsecurityfocuscom/bid/3241/info 'dvips' is a utility that converts DVI documents to PostScript It is an optional component of the TeTeX text formatting package When installed on a system where LPRnG and TeTeX are in use, 'dvips' will be invoked by 'lpd' when a DVI document is to be printed if a printfilter exists for it On s ...

Takes a list of CVE references and generates a 'report' containing link(s) to the RHSAs where the security issues are fixed with backported patches.

CVE Checker This script and (optional, poorly thought out) web interface will check Red Hat's CVE database to retrieve information on what version the issue was fixed via a backport patch Think SCAP, except much less useful To use, pipe in a whitespace separated list of CVE references in one of the following forms (for example): python rhsapy < cvelisttxt echo &

NVD-CWE-Other http://www.redhat.com/support/errata/RHSA-2001-102.html http://www.securityfocus.com/bid/3241 http://marc.info/?l=bugtraq&m=99892644616749&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/16509 https://nvd.nist.gov https://github.com/Xiol/CVEChecker https://www.exploit-db.com/exploits/21095/

CVE-2001-1002

Vulnerability Summary

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect