Vulnerability Details CVE-2004-0801
Unknown vulnerability in foomatic-rip in Foomatic before 3.0.2 allows local users or remote attackers with access to CUPS to execute arbitrary commands.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.021
EPSS Ranking 83.1%
CVSS Severity
CVSS v2 Score 7.5
References
- ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.12/SCOSA-2005.12.txt
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000880
- http://lists.suse.com/archive/suse-security-announce/2006-May/0007.html
- http://secunia.com/advisories/12557/
- http://secunia.com/advisories/20312
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-201005-1
- http://sunsolve.sun.com/search/document.do?assetkey=1-77-1000757.1-1
- http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:094
- http://www.novell.com/linux/security/advisories/2004_31_cups.html
- http://www.securityfocus.com/bid/11184
- http://www.trustix.net/errata/2004/0047/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17388
- ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.12/SCOSA-2005.12.txt
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000880
- http://lists.suse.com/archive/suse-security-announce/2006-May/0007.html
- http://secunia.com/advisories/12557/
- http://secunia.com/advisories/20312
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-201005-1
- http://sunsolve.sun.com/search/document.do?assetkey=1-77-1000757.1-1
- http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:094
- http://www.novell.com/linux/security/advisories/2004_31_cups.html
- http://www.securityfocus.com/bid/11184
- http://www.trustix.net/errata/2004/0047/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17388
Products affected by CVE-2004-0801
-
cpe:2.3:a:linuxprinting.org:foomatic-filters:3.0
-
cpe:2.3:a:linuxprinting.org:foomatic-filters:3.0.1
-
cpe:2.3:a:linuxprinting.org:foomatic-filters:3.0.2
-
cpe:2.3:a:linuxprinting.org:foomatic-filters:3.1
-
cpe:2.3:a:sun:java_desktop_system:2.0
-
cpe:2.3:a:sun:java_desktop_system:2003
-
cpe:2.3:o:conectiva:linux:10.0
-
cpe:2.3:o:conectiva:linux:9.0
-
cpe:2.3:o:trustix:secure_linux:2.0
-
cpe:2.3:o:trustix:secure_linux:2.1