Remote Command Execution in a2ps by GNU
CVE-2004-1170

Currently unrated

Key Information:

Vendor
Gnu
Vendor
CVE Published:
10 January 2005

Summary

The a2ps tool version 4.13 is susceptible to a vulnerability that permits remote attackers to execute arbitrary commands by exploiting shell metacharacters present in the filename. This could lead to unauthorized actions being performed on the affected systems without the consent of the user.

References

EPSS Score

15% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.