CVE-2004-1170

Published: Jan 10, 2005Modified: Apr 16, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

a2ps 4.13 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename.

Affected (11)

Products: Gnu: A2ps · Sun: Java Desktop System · Suse: Suse Linux

1 product

1 product

Java Desktop System

1 product

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Gnu A2ps	Version 4.13
Gnu A2ps	Version 4.13b
Sun Java Desktop System	Version 2.0
Sun Java Desktop System	Version 2003

Configuration B

7 vulnerable

Vulnerable Software	Affected Versions
Suse Suse Linux	Version 8.1
Suse Suse Linux	Version 8.2
Suse Suse Linux	Version 8
Suse Suse Linux	Version 9.0
Suse Suse Linux	Version 9.0
Suse Suse Linux	Version 9.0
Suse Suse Linux	Version 9.1

References (22)

http://archives.neohapsis.com/archives/fulldisclosure/2004-08/1026.html

Source: cve@mitre.org

ExploitPatchVendor Advisory

http://bugs.debian.org/283134

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=110598355226660&w=2

Source: cve@mitre.org

http://secunia.com/advisories/12375

Source: cve@mitre.org

http://sunsolve.sun.com/search/document.do?assetkey=1-26-57649-1&searchclause=

Source: cve@mitre.org

http://www.mandriva.com/security/advisories?name=MDKSA-2004:140

Source: cve@mitre.org

http://www.novell.com/linux/security/advisories/2004_34_xfree86_libs_xshared.html

Source: cve@mitre.org

http://www.securiteam.com/unixfocus/5MP0N2KDPA.html

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/419765/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/11025

Source: cve@mitre.org

ExploitPatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/17127

Source: cve@mitre.org

http://archives.neohapsis.com/archives/fulldisclosure/2004-08/1026.html

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitPatchVendor Advisory

http://bugs.debian.org/283134

Source: af854a3a-2127-422b-91ae-364da2661108

http://marc.info/?l=bugtraq&m=110598355226660&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/12375

Source: af854a3a-2127-422b-91ae-364da2661108

http://sunsolve.sun.com/search/document.do?assetkey=1-26-57649-1&searchclause=

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.mandriva.com/security/advisories?name=MDKSA-2004:140

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.novell.com/linux/security/advisories/2004_34_xfree86_libs_xshared.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securiteam.com/unixfocus/5MP0N2KDPA.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/419765/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/11025

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitPatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/17127

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.