PT-2002-1029 · Gnu · Gnu Enscript

Published

2002-01-14

Updated

2017-10-10

CVE-2002-0044

CVSS v2.0

3.6

Low

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:N

Name of the Vulnerable Software and Affected Versions GNU Enscript versions 1.6.1 and earlier

Description The issue allows local users to overwrite arbitrary files of the Enscript user via a symlink attack on temporary files, potentially leading to disruption of confidentiality and integrity of protected information. The exploitation of this issue can be performed locally.

Recommendations For GNU Enscript versions 1.6.1 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

BDU:2015-07780

CVE-2002-0044

Affected Products

Gnu Enscript

PT-2002-1029 · Gnu · Gnu Enscript

CVE-2002-0044

Related Identifiers

Affected Products

References · 9