Vulnerability   
Search   
    Search 211766 CVE descriptions
and 97459 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2014-0466
Description:The fixps script in a2ps 4.14 does not use the -dSAFER option when executing gs, which allows context-dependent attackers to delete arbitrary files or execute arbitrary commands via a crafted PostScript file.
Test IDs: 1.3.6.1.4.1.25623.1.0.702892   1.3.6.1.4.1.25623.1.0.867782   1.3.6.1.4.1.25623.1.0.867778   1.3.6.1.4.1.25623.1.1.4.2014.0581.1  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2014-0466
BugTraq ID: 66660
http://www.securityfocus.com/bid/66660
Debian Security Information: DSA-2892 (Google Search)
http://www.debian.org/security/2014/dsa-2892
https://security.gentoo.org/glsa/201701-67
SuSE Security Announcement: openSUSE-SU-2014:0499 (Google Search)
http://lists.opensuse.org/opensuse-updates/2014-04/msg00021.html




© 1998-2021 E-Soft Inc. All rights reserved.