CVE-2001-1002

Sažetak

The default configuration of the DVI print filter (dvips) in Red Hat Linux 7.0 and earlier does not run dvips in secure mode when dvips is executed by lpd, which could allow remote attackers to gain privileges by printing a DVI file that contains malicious commands.

Reference

http://marc.info/?l=bugtraq&m=99892644616749&w=2
http://www.redhat.com/support/errata/RHSA-2001-102.html
http://www.securityfocus.com/bid/3241
https://exchange.xforce.ibmcloud.com/vulnerabilities/16509

CVSS

Base:	7.5
Impact:	6.4
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

10-10-2017 - 01:29

Objavljeno

31-08-2001 - 04:00