Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-1184

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2004-1184
Last Modified 21 Aug 2010 12:21:59
Published 21 Jan 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2004-1184

Summary

The EPSF pipe support in enscript 1.6.3 allows remote attackers or local users to execute arbitrary commands via shell metacharacters.

Vulnerable Systems

Operating System

  • Redhat Fedora Core Core 2.0

  • Redhat Fedora Core Core 3.0

  • Suse Linux 1.0

  • Suse Linux 2.0

  • Suse Linux 3.0

  • Suse Linux 4.0

  • Suse Linux 4.2

  • Suse Linux 4.3

  • Suse Linux 4.4

  • Suse Linux 4.4.1

  • Suse Linux 5.0

  • Suse Linux 5.1

  • Suse Linux 5.2

  • Suse Linux 5.3

  • Suse Linux 6.0

  • Suse Linux 6.1

  • Suse Linux 6.2

  • Suse Linux 6.3

  • Suse Linux 6.4

  • Suse Linux 7.0

  • Suse Linux 7.1

  • Suse Linux 7.2

  • Suse Linux 7.3

  • Suse Linux 8.0

  • Suse Linux 8.1

  • Suse Linux 8.2

  • Suse Linux 9.0

  • Suse Linux 9.1

  • Suse Linux 9.2

Application

  • Gnu Enscript 1.4

  • Gnu Enscript 1.5

  • Gnu Enscript 1.6

  • Gnu Enscript 1.6.1

  • Gnu Enscript 1.6.2

  • Gnu Enscript 1.6.3

  • Gnu Enscript 1.6.4

  • Sgi Propack 3.0


References

CERT - TA09-133A

XF - enscript-epsf-command-ececution(19012)

REDHAT - RHSA-2005:040

GENTOO - GLSA-200502-03

DEBIAN - DSA-654

VUPEN - ADV-2009-1297

CONFIRM - http://support.apple.com/kb/HT3549

SECUNIA - 35074

APPLE - APPLE-SA-2009-05-12

UBUNTU - USN-68-1

BID - 12329

BUGTRAQ - 20060526 rPSA-2006-0083-1 enscript

FEDORA - FLSA:152892

MANDRAKE - MDKSA-2005:033

SECTRACK - 1012965

Related Patches

Apple 2009-05-12 Security Update 2009-002 Server (Tiger PPC)

Apple 2009-05-12 Security Update 2009-002 (Tiger PPC)

Apple 2009-05-12 Mac OS X 10.5.7 Combo Update

Apple 2009-05-12 Mac OS X Server 10.5.7 Update

Apple 2009-05-12 Mac OS X 10.5.7 Update

Apple 2009-05-12 Security Update 2009-002 (Tiger Intel)

Apple 2009-05-12 Mac OS X Server 10.5.7 Combo Update


Last Updated: 27 May 2016 10:38:56