Vulnerabilities > CVE-2002-1569

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

ghostview

NVD

Published: 2003-11-17

Updated: 2017-07-11

Summary

gv 3.5.8, and possibly earlier versions, allows remote attackers to execute arbitrary commands via shell metacharacters in the filename for (1) a PDF file or (2) a gzip file.

Vulnerable Configurations

Part	Description	Count
Application	Ghostview Ghostview Ghostview 1.3 Ghostview Ghostview 1.4 Ghostview Ghostview 1.4.1 Ghostview Ghostview 1.5	4
Application	Gv GV GV 2.7.6 GV GV 2.7B1 GV GV 2.7B2 GV GV 2.7B3 GV GV 2.7B4 GV GV 2.7B5 GV GV 2.9.4 GV GV 3.0.0 GV GV 3.0.4 GV GV 3.1.4 GV GV 3.1.6 GV GV 3.2.4 GV GV 3.4.2 GV GV 3.4.3 GV GV 3.4.12 GV GV 3.5.2 GV GV 3.5.3 GV GV 3.5.8	18

References

http://archives.neohapsis.com/archives/bugtraq/2002-10/0033.html
http://marc.info/?l=bugtraq&m=103348446009076&w=2
http://www.epita.fr/~bevand_m/asa/asa-0000
http://www.securityfocus.com/bid/5840
https://exchange.xforce.ibmcloud.com/vulnerabilities/10231

Vulnerabilities > CVE-2002-1569 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2002-1569"}]}

Summary

Vulnerable Configurations

References

Vulnerabilities > CVE-2002-1569