CVE-2004-1185

Name of the Vulnerable Software and Affected Versions Enscript version 1.6.3

Description The issue allows remote attackers or local users to execute arbitrary commands via crafted filenames because Enscript 1.6.3 does not sanitize filenames.

Recommendations For Enscript version 1.6.3, consider implementing filename sanitization to prevent the execution of arbitrary commands. As a temporary workaround, restrict the ability to create or modify filenames to minimize the risk of exploitation.