CVE Vulnerabilities

CVE-2001-1002

Published: Aug 31, 2001 | Modified: Oct 10, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

The default configuration of the DVI print filter (dvips) in Red Hat Linux 7.0 and earlier does not run dvips in secure mode when dvips is executed by lpd, which could allow remote attackers to gain privileges by printing a DVI file that contains malicious commands.

Affected Software

Name Vendor Start Version End Version
Linux Redhat 6.2 (including) 6.2 (including)
Linux Redhat 7.0 (including) 7.0 (including)
Linux Redhat 7.1 (including) 7.1 (including)
Red Hat Linux 5.2 RedHat *
Red Hat Linux 6.2 RedHat *
Red Hat Linux 7.0 RedHat *
Red Hat Linux 7.0j RedHat *
Red Hat Linux 7.1 RedHat *

References