Command Execution Vulnerability in Enscript Product by Esys
CVE-2004-1184

Currently unrated

Key Information:

Vendor: Gnu
Status: Enscript; Propack
Vendor: CVE Published:; 21 January 2005

What is CVE-2004-1184?

The EPSF pipe support in Enscript version 1.6.3 is susceptible to a command execution vulnerability that allows both remote attackers and local users to execute arbitrary commands by injecting shell metacharacters. This flaw could lead to unauthorized access or manipulation of the system's capabilities, posing a significant risk to the integrity and confidentiality of the affected environment.

References

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

http://www.securityfocus.com/archive/1/419768/100/0/threaded

vendor-advisoryx_refsource_FEDORA

http://www.securityfocus.com/bid/12329

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 21, 2005
Vulnerability Reserved
Dec 13, 2004

Gnu

What is CVE-2004-1184?

References

Timeline