gv 3.5.8, and possibly earlier versions, allows remote attackers to execute arbitrary commands via shell metacharacters in the filename for (1) a PDF file or (2) a gzip file.
References
Link | Resource |
---|---|
http://archives.neohapsis.com/archives/bugtraq/2002-10/0033.html | |
http://marc.info/?l=bugtraq&m=103348446009076&w=2 | |
http://www.epita.fr/~bevand_m/asa/asa-0000 | Exploit Patch Vendor Advisory |
http://www.securityfocus.com/bid/5840 | Patch Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/10231 |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2003-11-17 05:00
Updated : 2024-02-28 10:24
NVD link : CVE-2002-1569
Mitre link : CVE-2002-1569
CVE.ORG link : CVE-2002-1569
JSON object : View
Products Affected
ghostview
- ghostview
gv
- gv
CWE