Vulnerability Details CVE-2002-1569
gv 3.5.8, and possibly earlier versions, allows remote attackers to execute arbitrary commands via shell metacharacters in the filename for (1) a PDF file or (2) a gzip file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.025
EPSS Ranking 84.7%
CVSS Severity
CVSS v2 Score 7.5
References
- http://archives.neohapsis.com/archives/bugtraq/2002-10/0033.html
- http://marc.info/?l=bugtraq&m=103348446009076&w=2
- http://www.epita.fr/~bevand_m/asa/asa-0000
- http://www.securityfocus.com/bid/5840
- https://exchange.xforce.ibmcloud.com/vulnerabilities/10231
- http://archives.neohapsis.com/archives/bugtraq/2002-10/0033.html
- http://marc.info/?l=bugtraq&m=103348446009076&w=2
- http://www.epita.fr/~bevand_m/asa/asa-0000
- http://www.securityfocus.com/bid/5840
- https://exchange.xforce.ibmcloud.com/vulnerabilities/10231
Products affected by CVE-2002-1569
-
cpe:2.3:a:ghostview:ghostview:1.3
-
cpe:2.3:a:ghostview:ghostview:1.4
-
cpe:2.3:a:ghostview:ghostview:1.4.1
-
cpe:2.3:a:ghostview:ghostview:1.5
-
cpe:2.3:a:gv:gv:2.7.6
-
cpe:2.3:a:gv:gv:2.7b1
-
cpe:2.3:a:gv:gv:2.7b2
-
cpe:2.3:a:gv:gv:2.7b3
-
cpe:2.3:a:gv:gv:2.7b4
-
cpe:2.3:a:gv:gv:2.7b5
-
cpe:2.3:a:gv:gv:2.9.4
-
cpe:2.3:a:gv:gv:3.0.0
-
cpe:2.3:a:gv:gv:3.0.4
-
cpe:2.3:a:gv:gv:3.1.4
-
cpe:2.3:a:gv:gv:3.1.6
-
cpe:2.3:a:gv:gv:3.2.4
-
cpe:2.3:a:gv:gv:3.4.12
-
cpe:2.3:a:gv:gv:3.4.2
-
cpe:2.3:a:gv:gv:3.4.3
-
cpe:2.3:a:gv:gv:3.5.2
-
cpe:2.3:a:gv:gv:3.5.3
-
cpe:2.3:a:gv:gv:3.5.8