Vulnerabilities > GNU > Groff > 1.16
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2011-06-30 | CVE-2009-5078 | 7PK - Security Features vulnerability in multiple products contrib/pdfmark/pdfroff.sh in GNU troff (aka groff) before 1.21 launches the Ghostscript program without the -dSAFER option, which allows remote attackers to create, overwrite, rename, or delete arbitrary files via a crafted document. | 6.4 |
2002-02-27 | CVE-2002-0003 | Buffer Overflow vulnerability in Groff Pre-Processor Buffer overflow in the preprocessor in groff 1.16 and earlier allows remote attackers to gain privileges via lpd in the LPRng printing system. | 7.5 |
2000-12-19 | CVE-2000-0803 | Unspecified vulnerability in GNU Groff GNU Groff uses the current working directory to find a device description file, which allows a local user to gain additional privileges by including a malicious postpro directive in the description file, which is executed when another user runs groff. | 10.0 |