Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2001-1022

Published: 26/07/2001 Updated: 10/10/2017
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 755
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Groff

Vulnerability Summary

Format string vulnerability in pic utility in groff 1.16.1 and other versions, and jgroff prior to 1.15, allows remote malicious users to bypass the -S option and execute arbitrary commands via format string specifiers in the plot command.

Vulnerable Product Search on Vulmon Subscribe to Product

gnu groff 1.14

gnu groff 1.15

gnu groff 1.16.1

jgroff jgroff

gnu groff 1.11

gnu groff 1.11a

gnu groff 1.10

Vendor Advisories

Debian Security Advisories: DSA-072-1 groff -- printf format attack
Zenith Parse found a security problem in groff (the GNU version of troff) The pic command was vulnerable to a printf format attack which made it possible to circumvent the `-S' option and execute arbitrary code This has been fixed in version 1152-2, and we recommend that you upgrade your groff packages immediately ...

Exploits

Exploit DB: GNU groff 1.1x - xploitation Via LPD
source: wwwsecurityfocuscom/bid/3103/info lpd is the print spooling daemon It is used to support network printing on a variety of unix platforms The version of lpd that ships with linux systems invokes groff to process documents that are to be printed The groff utility used to process images, 'pic', contains a vulnerability that can b ...

References

NVD-CWE-Otherhttp://www.securityfocus.com/archive/1/199706http://www.debian.org/security/2001/dsa-072http://www.securityfocus.com/bid/3103http://www.debian.org/security/2002/dsa-107http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000428http://www.redhat.com/support/errata/RHSA-2002-004.htmlhttp://www.osvdb.org/1914https://exchange.xforce.ibmcloud.com/vulnerabilities/6918https://nvd.nist.govhttps://www.debian.org/security/./dsa-072https://www.exploit-db.com/exploits/21037/https://www.kb.cert.org/vuls/id/399883
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversalCVE-2024-26978CVE-2024-26982wirelessCVE-2023-6949CVE-2024-26980CVE-2024-32766CVE-2024-26939cache poisoning
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook