Search criteria

9 vulnerabilities found for gv by gv

CVE-2004-1717 (GCVE-0-2004-1717)

Vulnerability from cvelistv5 – Published: 2005-02-26 05:00 – Updated: 2024-08-08 01:00
VLAI?
Summary
Multiple buffer overflows in the psscan function in ps.c for gv (ghostview) allow remote attackers to execute arbitrary code via a Postscript file with a long (1) BoundingBox, (2) comment, (3) Orientation, (4) PageOrder, or (5) Pages value.
Severity ?
No CVSS data available.
CWE
  • n/a
Assigner
References
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-08T01:00:37.244Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "gv-psscan-header-bo(17019)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17019"
          },
          {
            "name": "20040816 gv buffer overflows: here, there, and everywhere",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=bugtraq\u0026m=109267677114331\u0026w=2"
          },
          {
            "name": "10944",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/10944"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2004-08-16T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple buffer overflows in the psscan function in ps.c for gv (ghostview) allow remote attackers to execute arbitrary code via a Postscript file with a long (1) BoundingBox, (2) comment, (3) Orientation, (4) PageOrder, or (5) Pages value."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-07-10T14:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "gv-psscan-header-bo(17019)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17019"
        },
        {
          "name": "20040816 gv buffer overflows: here, there, and everywhere",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://marc.info/?l=bugtraq\u0026m=109267677114331\u0026w=2"
        },
        {
          "name": "10944",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/10944"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2004-1717",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple buffer overflows in the psscan function in ps.c for gv (ghostview) allow remote attackers to execute arbitrary code via a Postscript file with a long (1) BoundingBox, (2) comment, (3) Orientation, (4) PageOrder, or (5) Pages value."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "gv-psscan-header-bo(17019)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17019"
            },
            {
              "name": "20040816 gv buffer overflows: here, there, and everywhere",
              "refsource": "BUGTRAQ",
              "url": "http://marc.info/?l=bugtraq\u0026m=109267677114331\u0026w=2"
            },
            {
              "name": "10944",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/10944"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2004-1717",
    "datePublished": "2005-02-26T05:00:00",
    "dateReserved": "2005-02-26T00:00:00",
    "dateUpdated": "2024-08-08T01:00:37.244Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2002-1569 (GCVE-0-2002-1569)

Vulnerability from cvelistv5 – Published: 2003-10-25 04:00 – Updated: 2024-08-08 03:26
VLAI?
Summary
gv 3.5.8, and possibly earlier versions, allows remote attackers to execute arbitrary commands via shell metacharacters in the filename for (1) a PDF file or (2) a gzip file.
Severity ?
No CVSS data available.
CWE
  • n/a
Assigner
References
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-08T03:26:28.980Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "5840",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/5840"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.epita.fr/~bevand_m/asa/asa-0000"
          },
          {
            "name": "20021003 GLSA: gv",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://archives.neohapsis.com/archives/bugtraq/2002-10/0033.html"
          },
          {
            "name": "20021001 ASA-0000: GV Execution of Arbitrary Shell Commands",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=bugtraq\u0026m=103348446009076\u0026w=2"
          },
          {
            "name": "gv-system-execute-commands(10231)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10231"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2002-10-01T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "gv 3.5.8, and possibly earlier versions, allows remote attackers to execute arbitrary commands via shell metacharacters in the filename for (1) a PDF file or (2) a gzip file."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-07-10T14:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "5840",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/5840"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.epita.fr/~bevand_m/asa/asa-0000"
        },
        {
          "name": "20021003 GLSA: gv",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://archives.neohapsis.com/archives/bugtraq/2002-10/0033.html"
        },
        {
          "name": "20021001 ASA-0000: GV Execution of Arbitrary Shell Commands",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://marc.info/?l=bugtraq\u0026m=103348446009076\u0026w=2"
        },
        {
          "name": "gv-system-execute-commands(10231)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10231"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2002-1569",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "gv 3.5.8, and possibly earlier versions, allows remote attackers to execute arbitrary commands via shell metacharacters in the filename for (1) a PDF file or (2) a gzip file."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "5840",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/5840"
            },
            {
              "name": "http://www.epita.fr/~bevand_m/asa/asa-0000",
              "refsource": "MISC",
              "url": "http://www.epita.fr/~bevand_m/asa/asa-0000"
            },
            {
              "name": "20021003 GLSA: gv",
              "refsource": "BUGTRAQ",
              "url": "http://archives.neohapsis.com/archives/bugtraq/2002-10/0033.html"
            },
            {
              "name": "20021001 ASA-0000: GV Execution of Arbitrary Shell Commands",
              "refsource": "BUGTRAQ",
              "url": "http://marc.info/?l=bugtraq\u0026m=103348446009076\u0026w=2"
            },
            {
              "name": "gv-system-execute-commands(10231)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10231"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2002-1569",
    "datePublished": "2003-10-25T04:00:00",
    "dateReserved": "2003-10-22T00:00:00",
    "dateUpdated": "2024-08-08T03:26:28.980Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2002-0838 (GCVE-0-2002-0838)

Vulnerability from cvelistv5 – Published: 2002-10-01 04:00 – Updated: 2024-08-08 03:03
VLAI?
Summary
Buffer overflow in (1) gv 3.5.8 and earlier, (2) gvv 1.0.2 and earlier, (3) ggv 1.99.90 and earlier, (4) gnome-gv, and (5) kghostview in kdegraphics 2.2.2 and earlier, allows attackers to execute arbitrary code via a malformed (a) PDF or (b) PostScript file, which is processed by an unsafe call to sscanf.
Severity ?
No CVSS data available.
CWE
  • n/a
Assigner
References
http://www.debian.org/security/2002/dsa-179 vendor-advisoryx_refsource_DEBIAN
http://www.mandriva.com/security/advisories?name=… vendor-advisoryx_refsource_MANDRAKE
http://www.kde.org/info/security/advisory-2002100… x_refsource_CONFIRM
ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA… vendor-advisoryx_refsource_CALDERA
http://www.debian.org/security/2002/dsa-182 vendor-advisoryx_refsource_DEBIAN
http://distro.conectiva.com.br/atualizacoes/?id=a… vendor-advisoryx_refsource_CONECTIVA
http://marc.info/?l=bugtraq&m=103305615613319&w=2 mailing-listx_refsource_BUGTRAQ
http://www.mandriva.com/security/advisories?name=… vendor-advisoryx_refsource_MANDRAKE
http://www.securityfocus.com/bid/5808 vdb-entryx_refsource_BID
http://www.debian.org/security/2002/dsa-176 vendor-advisoryx_refsource_DEBIAN
http://www.iss.net/security_center/static/10201.php vdb-entryx_refsource_XF
http://www.redhat.com/support/errata/RHSA-2002-212.html vendor-advisoryx_refsource_REDHAT
http://www.redhat.com/support/errata/RHSA-2002-220.html vendor-advisoryx_refsource_REDHAT
http://www.redhat.com/support/errata/RHSA-2002-207.html vendor-advisoryx_refsource_REDHAT
http://www.kb.cert.org/vuls/id/600777 third-party-advisoryx_refsource_CERT-VN
http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=f… x_refsource_CONFIRM
http://marc.info/?l=bugtraq&m=103487806800388&w=2 mailing-listx_refsource_BUGTRAQ
http://marc.info/?l=bugtraq&m=103305778615625&w=2 mailing-listx_refsource_BUGTRAQ
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-08T03:03:49.244Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "DSA-179",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2002/dsa-179"
          },
          {
            "name": "MDKSA-2002:069",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRAKE",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2002:069"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.kde.org/info/security/advisory-20021008-1.txt"
          },
          {
            "name": "CSSA-2002-053.0",
            "tags": [
              "vendor-advisory",
              "x_refsource_CALDERA",
              "x_transferred"
            ],
            "url": "ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-053.0.txt"
          },
          {
            "name": "DSA-182",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2002/dsa-182"
          },
          {
            "name": "CLA-2002:542",
            "tags": [
              "vendor-advisory",
              "x_refsource_CONECTIVA",
              "x_transferred"
            ],
            "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000542"
          },
          {
            "name": "20020926 iDEFENSE Security Advisory 09.26.2002: Exploitable Buffer Overflow in gv",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=bugtraq\u0026m=103305615613319\u0026w=2"
          },
          {
            "name": "MDKSA-2002:071",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRAKE",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2002:071"
          },
          {
            "name": "5808",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/5808"
          },
          {
            "name": "DSA-176",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2002/dsa-176"
          },
          {
            "name": "gv-sscanf-function-bo(10201)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "http://www.iss.net/security_center/static/10201.php"
          },
          {
            "name": "RHSA-2002:212",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2002-212.html"
          },
          {
            "name": "RHSA-2002:220",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2002-220.html"
          },
          {
            "name": "RHSA-2002:207",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2002-207.html"
          },
          {
            "name": "VU#600777",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT-VN",
              "x_transferred"
            ],
            "url": "http://www.kb.cert.org/vuls/id/600777"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/47780\u0026zone_32=category:security"
          },
          {
            "name": "20021017 GLSA: ggv",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=bugtraq\u0026m=103487806800388\u0026w=2"
          },
          {
            "name": "20020926 Errata: iDEFENSE Security Advisory 09.26.2002: Exploitable Buffer Overflow in gv",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=bugtraq\u0026m=103305778615625\u0026w=2"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2002-09-26T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Buffer overflow in (1) gv 3.5.8 and earlier, (2) gvv 1.0.2 and earlier, (3) ggv 1.99.90 and earlier, (4) gnome-gv, and (5) kghostview in kdegraphics 2.2.2 and earlier, allows attackers to execute arbitrary code via a malformed (a) PDF or (b) PostScript file, which is processed by an unsafe call to sscanf."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2016-10-17T13:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "DSA-179",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2002/dsa-179"
        },
        {
          "name": "MDKSA-2002:069",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRAKE"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2002:069"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.kde.org/info/security/advisory-20021008-1.txt"
        },
        {
          "name": "CSSA-2002-053.0",
          "tags": [
            "vendor-advisory",
            "x_refsource_CALDERA"
          ],
          "url": "ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-053.0.txt"
        },
        {
          "name": "DSA-182",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2002/dsa-182"
        },
        {
          "name": "CLA-2002:542",
          "tags": [
            "vendor-advisory",
            "x_refsource_CONECTIVA"
          ],
          "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000542"
        },
        {
          "name": "20020926 iDEFENSE Security Advisory 09.26.2002: Exploitable Buffer Overflow in gv",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://marc.info/?l=bugtraq\u0026m=103305615613319\u0026w=2"
        },
        {
          "name": "MDKSA-2002:071",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRAKE"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2002:071"
        },
        {
          "name": "5808",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/5808"
        },
        {
          "name": "DSA-176",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2002/dsa-176"
        },
        {
          "name": "gv-sscanf-function-bo(10201)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "http://www.iss.net/security_center/static/10201.php"
        },
        {
          "name": "RHSA-2002:212",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2002-212.html"
        },
        {
          "name": "RHSA-2002:220",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2002-220.html"
        },
        {
          "name": "RHSA-2002:207",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2002-207.html"
        },
        {
          "name": "VU#600777",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT-VN"
          ],
          "url": "http://www.kb.cert.org/vuls/id/600777"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/47780\u0026zone_32=category:security"
        },
        {
          "name": "20021017 GLSA: ggv",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://marc.info/?l=bugtraq\u0026m=103487806800388\u0026w=2"
        },
        {
          "name": "20020926 Errata: iDEFENSE Security Advisory 09.26.2002: Exploitable Buffer Overflow in gv",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://marc.info/?l=bugtraq\u0026m=103305778615625\u0026w=2"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2002-0838",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Buffer overflow in (1) gv 3.5.8 and earlier, (2) gvv 1.0.2 and earlier, (3) ggv 1.99.90 and earlier, (4) gnome-gv, and (5) kghostview in kdegraphics 2.2.2 and earlier, allows attackers to execute arbitrary code via a malformed (a) PDF or (b) PostScript file, which is processed by an unsafe call to sscanf."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "DSA-179",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2002/dsa-179"
            },
            {
              "name": "MDKSA-2002:069",
              "refsource": "MANDRAKE",
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2002:069"
            },
            {
              "name": "http://www.kde.org/info/security/advisory-20021008-1.txt",
              "refsource": "CONFIRM",
              "url": "http://www.kde.org/info/security/advisory-20021008-1.txt"
            },
            {
              "name": "CSSA-2002-053.0",
              "refsource": "CALDERA",
              "url": "ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-053.0.txt"
            },
            {
              "name": "DSA-182",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2002/dsa-182"
            },
            {
              "name": "CLA-2002:542",
              "refsource": "CONECTIVA",
              "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000542"
            },
            {
              "name": "20020926 iDEFENSE Security Advisory 09.26.2002: Exploitable Buffer Overflow in gv",
              "refsource": "BUGTRAQ",
              "url": "http://marc.info/?l=bugtraq\u0026m=103305615613319\u0026w=2"
            },
            {
              "name": "MDKSA-2002:071",
              "refsource": "MANDRAKE",
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2002:071"
            },
            {
              "name": "5808",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/5808"
            },
            {
              "name": "DSA-176",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2002/dsa-176"
            },
            {
              "name": "gv-sscanf-function-bo(10201)",
              "refsource": "XF",
              "url": "http://www.iss.net/security_center/static/10201.php"
            },
            {
              "name": "RHSA-2002:212",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2002-212.html"
            },
            {
              "name": "RHSA-2002:220",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2002-220.html"
            },
            {
              "name": "RHSA-2002:207",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2002-207.html"
            },
            {
              "name": "VU#600777",
              "refsource": "CERT-VN",
              "url": "http://www.kb.cert.org/vuls/id/600777"
            },
            {
              "name": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/47780\u0026zone_32=category:security",
              "refsource": "CONFIRM",
              "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/47780\u0026zone_32=category:security"
            },
            {
              "name": "20021017 GLSA: ggv",
              "refsource": "BUGTRAQ",
              "url": "http://marc.info/?l=bugtraq\u0026m=103487806800388\u0026w=2"
            },
            {
              "name": "20020926 Errata: iDEFENSE Security Advisory 09.26.2002: Exploitable Buffer Overflow in gv",
              "refsource": "BUGTRAQ",
              "url": "http://marc.info/?l=bugtraq\u0026m=103305778615625\u0026w=2"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2002-0838",
    "datePublished": "2002-10-01T04:00:00",
    "dateReserved": "2002-08-08T00:00:00",
    "dateUpdated": "2024-08-08T03:03:49.244Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2004-1717 (GCVE-0-2004-1717)

Vulnerability from nvd – Published: 2005-02-26 05:00 – Updated: 2024-08-08 01:00
VLAI?
Summary
Multiple buffer overflows in the psscan function in ps.c for gv (ghostview) allow remote attackers to execute arbitrary code via a Postscript file with a long (1) BoundingBox, (2) comment, (3) Orientation, (4) PageOrder, or (5) Pages value.
Severity ?
No CVSS data available.
CWE
  • n/a
Assigner
References
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-08T01:00:37.244Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "gv-psscan-header-bo(17019)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17019"
          },
          {
            "name": "20040816 gv buffer overflows: here, there, and everywhere",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=bugtraq\u0026m=109267677114331\u0026w=2"
          },
          {
            "name": "10944",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/10944"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2004-08-16T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple buffer overflows in the psscan function in ps.c for gv (ghostview) allow remote attackers to execute arbitrary code via a Postscript file with a long (1) BoundingBox, (2) comment, (3) Orientation, (4) PageOrder, or (5) Pages value."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-07-10T14:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "gv-psscan-header-bo(17019)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17019"
        },
        {
          "name": "20040816 gv buffer overflows: here, there, and everywhere",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://marc.info/?l=bugtraq\u0026m=109267677114331\u0026w=2"
        },
        {
          "name": "10944",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/10944"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2004-1717",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple buffer overflows in the psscan function in ps.c for gv (ghostview) allow remote attackers to execute arbitrary code via a Postscript file with a long (1) BoundingBox, (2) comment, (3) Orientation, (4) PageOrder, or (5) Pages value."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "gv-psscan-header-bo(17019)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17019"
            },
            {
              "name": "20040816 gv buffer overflows: here, there, and everywhere",
              "refsource": "BUGTRAQ",
              "url": "http://marc.info/?l=bugtraq\u0026m=109267677114331\u0026w=2"
            },
            {
              "name": "10944",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/10944"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2004-1717",
    "datePublished": "2005-02-26T05:00:00",
    "dateReserved": "2005-02-26T00:00:00",
    "dateUpdated": "2024-08-08T01:00:37.244Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2002-1569 (GCVE-0-2002-1569)

Vulnerability from nvd – Published: 2003-10-25 04:00 – Updated: 2024-08-08 03:26
VLAI?
Summary
gv 3.5.8, and possibly earlier versions, allows remote attackers to execute arbitrary commands via shell metacharacters in the filename for (1) a PDF file or (2) a gzip file.
Severity ?
No CVSS data available.
CWE
  • n/a
Assigner
References
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-08T03:26:28.980Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "5840",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/5840"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.epita.fr/~bevand_m/asa/asa-0000"
          },
          {
            "name": "20021003 GLSA: gv",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://archives.neohapsis.com/archives/bugtraq/2002-10/0033.html"
          },
          {
            "name": "20021001 ASA-0000: GV Execution of Arbitrary Shell Commands",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=bugtraq\u0026m=103348446009076\u0026w=2"
          },
          {
            "name": "gv-system-execute-commands(10231)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10231"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2002-10-01T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "gv 3.5.8, and possibly earlier versions, allows remote attackers to execute arbitrary commands via shell metacharacters in the filename for (1) a PDF file or (2) a gzip file."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-07-10T14:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "5840",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/5840"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.epita.fr/~bevand_m/asa/asa-0000"
        },
        {
          "name": "20021003 GLSA: gv",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://archives.neohapsis.com/archives/bugtraq/2002-10/0033.html"
        },
        {
          "name": "20021001 ASA-0000: GV Execution of Arbitrary Shell Commands",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://marc.info/?l=bugtraq\u0026m=103348446009076\u0026w=2"
        },
        {
          "name": "gv-system-execute-commands(10231)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10231"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2002-1569",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "gv 3.5.8, and possibly earlier versions, allows remote attackers to execute arbitrary commands via shell metacharacters in the filename for (1) a PDF file or (2) a gzip file."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "5840",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/5840"
            },
            {
              "name": "http://www.epita.fr/~bevand_m/asa/asa-0000",
              "refsource": "MISC",
              "url": "http://www.epita.fr/~bevand_m/asa/asa-0000"
            },
            {
              "name": "20021003 GLSA: gv",
              "refsource": "BUGTRAQ",
              "url": "http://archives.neohapsis.com/archives/bugtraq/2002-10/0033.html"
            },
            {
              "name": "20021001 ASA-0000: GV Execution of Arbitrary Shell Commands",
              "refsource": "BUGTRAQ",
              "url": "http://marc.info/?l=bugtraq\u0026m=103348446009076\u0026w=2"
            },
            {
              "name": "gv-system-execute-commands(10231)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10231"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2002-1569",
    "datePublished": "2003-10-25T04:00:00",
    "dateReserved": "2003-10-22T00:00:00",
    "dateUpdated": "2024-08-08T03:26:28.980Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2002-0838 (GCVE-0-2002-0838)

Vulnerability from nvd – Published: 2002-10-01 04:00 – Updated: 2024-08-08 03:03
VLAI?
Summary
Buffer overflow in (1) gv 3.5.8 and earlier, (2) gvv 1.0.2 and earlier, (3) ggv 1.99.90 and earlier, (4) gnome-gv, and (5) kghostview in kdegraphics 2.2.2 and earlier, allows attackers to execute arbitrary code via a malformed (a) PDF or (b) PostScript file, which is processed by an unsafe call to sscanf.
Severity ?
No CVSS data available.
CWE
  • n/a
Assigner
References
http://www.debian.org/security/2002/dsa-179 vendor-advisoryx_refsource_DEBIAN
http://www.mandriva.com/security/advisories?name=… vendor-advisoryx_refsource_MANDRAKE
http://www.kde.org/info/security/advisory-2002100… x_refsource_CONFIRM
ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA… vendor-advisoryx_refsource_CALDERA
http://www.debian.org/security/2002/dsa-182 vendor-advisoryx_refsource_DEBIAN
http://distro.conectiva.com.br/atualizacoes/?id=a… vendor-advisoryx_refsource_CONECTIVA
http://marc.info/?l=bugtraq&m=103305615613319&w=2 mailing-listx_refsource_BUGTRAQ
http://www.mandriva.com/security/advisories?name=… vendor-advisoryx_refsource_MANDRAKE
http://www.securityfocus.com/bid/5808 vdb-entryx_refsource_BID
http://www.debian.org/security/2002/dsa-176 vendor-advisoryx_refsource_DEBIAN
http://www.iss.net/security_center/static/10201.php vdb-entryx_refsource_XF
http://www.redhat.com/support/errata/RHSA-2002-212.html vendor-advisoryx_refsource_REDHAT
http://www.redhat.com/support/errata/RHSA-2002-220.html vendor-advisoryx_refsource_REDHAT
http://www.redhat.com/support/errata/RHSA-2002-207.html vendor-advisoryx_refsource_REDHAT
http://www.kb.cert.org/vuls/id/600777 third-party-advisoryx_refsource_CERT-VN
http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=f… x_refsource_CONFIRM
http://marc.info/?l=bugtraq&m=103487806800388&w=2 mailing-listx_refsource_BUGTRAQ
http://marc.info/?l=bugtraq&m=103305778615625&w=2 mailing-listx_refsource_BUGTRAQ
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-08T03:03:49.244Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "DSA-179",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2002/dsa-179"
          },
          {
            "name": "MDKSA-2002:069",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRAKE",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2002:069"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.kde.org/info/security/advisory-20021008-1.txt"
          },
          {
            "name": "CSSA-2002-053.0",
            "tags": [
              "vendor-advisory",
              "x_refsource_CALDERA",
              "x_transferred"
            ],
            "url": "ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-053.0.txt"
          },
          {
            "name": "DSA-182",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2002/dsa-182"
          },
          {
            "name": "CLA-2002:542",
            "tags": [
              "vendor-advisory",
              "x_refsource_CONECTIVA",
              "x_transferred"
            ],
            "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000542"
          },
          {
            "name": "20020926 iDEFENSE Security Advisory 09.26.2002: Exploitable Buffer Overflow in gv",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=bugtraq\u0026m=103305615613319\u0026w=2"
          },
          {
            "name": "MDKSA-2002:071",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRAKE",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2002:071"
          },
          {
            "name": "5808",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/5808"
          },
          {
            "name": "DSA-176",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2002/dsa-176"
          },
          {
            "name": "gv-sscanf-function-bo(10201)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "http://www.iss.net/security_center/static/10201.php"
          },
          {
            "name": "RHSA-2002:212",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2002-212.html"
          },
          {
            "name": "RHSA-2002:220",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2002-220.html"
          },
          {
            "name": "RHSA-2002:207",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2002-207.html"
          },
          {
            "name": "VU#600777",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT-VN",
              "x_transferred"
            ],
            "url": "http://www.kb.cert.org/vuls/id/600777"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/47780\u0026zone_32=category:security"
          },
          {
            "name": "20021017 GLSA: ggv",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=bugtraq\u0026m=103487806800388\u0026w=2"
          },
          {
            "name": "20020926 Errata: iDEFENSE Security Advisory 09.26.2002: Exploitable Buffer Overflow in gv",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=bugtraq\u0026m=103305778615625\u0026w=2"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2002-09-26T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Buffer overflow in (1) gv 3.5.8 and earlier, (2) gvv 1.0.2 and earlier, (3) ggv 1.99.90 and earlier, (4) gnome-gv, and (5) kghostview in kdegraphics 2.2.2 and earlier, allows attackers to execute arbitrary code via a malformed (a) PDF or (b) PostScript file, which is processed by an unsafe call to sscanf."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2016-10-17T13:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "DSA-179",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2002/dsa-179"
        },
        {
          "name": "MDKSA-2002:069",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRAKE"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2002:069"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.kde.org/info/security/advisory-20021008-1.txt"
        },
        {
          "name": "CSSA-2002-053.0",
          "tags": [
            "vendor-advisory",
            "x_refsource_CALDERA"
          ],
          "url": "ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-053.0.txt"
        },
        {
          "name": "DSA-182",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2002/dsa-182"
        },
        {
          "name": "CLA-2002:542",
          "tags": [
            "vendor-advisory",
            "x_refsource_CONECTIVA"
          ],
          "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000542"
        },
        {
          "name": "20020926 iDEFENSE Security Advisory 09.26.2002: Exploitable Buffer Overflow in gv",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://marc.info/?l=bugtraq\u0026m=103305615613319\u0026w=2"
        },
        {
          "name": "MDKSA-2002:071",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRAKE"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2002:071"
        },
        {
          "name": "5808",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/5808"
        },
        {
          "name": "DSA-176",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2002/dsa-176"
        },
        {
          "name": "gv-sscanf-function-bo(10201)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "http://www.iss.net/security_center/static/10201.php"
        },
        {
          "name": "RHSA-2002:212",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2002-212.html"
        },
        {
          "name": "RHSA-2002:220",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2002-220.html"
        },
        {
          "name": "RHSA-2002:207",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2002-207.html"
        },
        {
          "name": "VU#600777",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT-VN"
          ],
          "url": "http://www.kb.cert.org/vuls/id/600777"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/47780\u0026zone_32=category:security"
        },
        {
          "name": "20021017 GLSA: ggv",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://marc.info/?l=bugtraq\u0026m=103487806800388\u0026w=2"
        },
        {
          "name": "20020926 Errata: iDEFENSE Security Advisory 09.26.2002: Exploitable Buffer Overflow in gv",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://marc.info/?l=bugtraq\u0026m=103305778615625\u0026w=2"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2002-0838",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Buffer overflow in (1) gv 3.5.8 and earlier, (2) gvv 1.0.2 and earlier, (3) ggv 1.99.90 and earlier, (4) gnome-gv, and (5) kghostview in kdegraphics 2.2.2 and earlier, allows attackers to execute arbitrary code via a malformed (a) PDF or (b) PostScript file, which is processed by an unsafe call to sscanf."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "DSA-179",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2002/dsa-179"
            },
            {
              "name": "MDKSA-2002:069",
              "refsource": "MANDRAKE",
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2002:069"
            },
            {
              "name": "http://www.kde.org/info/security/advisory-20021008-1.txt",
              "refsource": "CONFIRM",
              "url": "http://www.kde.org/info/security/advisory-20021008-1.txt"
            },
            {
              "name": "CSSA-2002-053.0",
              "refsource": "CALDERA",
              "url": "ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-053.0.txt"
            },
            {
              "name": "DSA-182",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2002/dsa-182"
            },
            {
              "name": "CLA-2002:542",
              "refsource": "CONECTIVA",
              "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000542"
            },
            {
              "name": "20020926 iDEFENSE Security Advisory 09.26.2002: Exploitable Buffer Overflow in gv",
              "refsource": "BUGTRAQ",
              "url": "http://marc.info/?l=bugtraq\u0026m=103305615613319\u0026w=2"
            },
            {
              "name": "MDKSA-2002:071",
              "refsource": "MANDRAKE",
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2002:071"
            },
            {
              "name": "5808",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/5808"
            },
            {
              "name": "DSA-176",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2002/dsa-176"
            },
            {
              "name": "gv-sscanf-function-bo(10201)",
              "refsource": "XF",
              "url": "http://www.iss.net/security_center/static/10201.php"
            },
            {
              "name": "RHSA-2002:212",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2002-212.html"
            },
            {
              "name": "RHSA-2002:220",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2002-220.html"
            },
            {
              "name": "RHSA-2002:207",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2002-207.html"
            },
            {
              "name": "VU#600777",
              "refsource": "CERT-VN",
              "url": "http://www.kb.cert.org/vuls/id/600777"
            },
            {
              "name": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/47780\u0026zone_32=category:security",
              "refsource": "CONFIRM",
              "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/47780\u0026zone_32=category:security"
            },
            {
              "name": "20021017 GLSA: ggv",
              "refsource": "BUGTRAQ",
              "url": "http://marc.info/?l=bugtraq\u0026m=103487806800388\u0026w=2"
            },
            {
              "name": "20020926 Errata: iDEFENSE Security Advisory 09.26.2002: Exploitable Buffer Overflow in gv",
              "refsource": "BUGTRAQ",
              "url": "http://marc.info/?l=bugtraq\u0026m=103305778615625\u0026w=2"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2002-0838",
    "datePublished": "2002-10-01T04:00:00",
    "dateReserved": "2002-08-08T00:00:00",
    "dateUpdated": "2024-08-08T03:03:49.244Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

FKIE_CVE-2004-1717

Vulnerability from fkie_nvd - Published: 2004-08-16 04:00 - Updated: 2025-04-03 01:03
Severity ?
Summary
Multiple buffer overflows in the psscan function in ps.c for gv (ghostview) allow remote attackers to execute arbitrary code via a Postscript file with a long (1) BoundingBox, (2) comment, (3) Orientation, (4) PageOrder, or (5) Pages value.
References
cve@mitre.orghttp://marc.info/?l=bugtraq&m=109267677114331&w=2
cve@mitre.orghttp://www.securityfocus.com/bid/10944Exploit, Vendor Advisory
cve@mitre.orghttps://exchange.xforce.ibmcloud.com/vulnerabilities/17019
af854a3a-2127-422b-91ae-364da2661108http://marc.info/?l=bugtraq&m=109267677114331&w=2
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/10944Exploit, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/17019
Impacted products
Vendor Product Version
gv gv 2.7.6
gv gv 2.7b1
gv gv 2.7b2
gv gv 2.7b3
gv gv 2.7b4
gv gv 2.7b5
gv gv 2.9.4
gv gv 3.0.0
gv gv 3.0.4
gv gv 3.1.4
gv gv 3.1.6
gv gv 3.2.4
gv gv 3.4.2
gv gv 3.4.3
gv gv 3.4.12
gv gv 3.5.2
gv gv 3.5.3
gv gv 3.5.8
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:gv:gv:2.7.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "21635C49-6F67-4852-A34B-6CA758D92F48",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:2.7b1:*:*:*:*:*:*:*",
              "matchCriteriaId": "B2CDF1F6-AEA8-493B-AF8E-B06C2AFD0DCC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:2.7b2:*:*:*:*:*:*:*",
              "matchCriteriaId": "E062D50D-DEFA-45A6-B749-E3B7CAACD621",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:2.7b3:*:*:*:*:*:*:*",
              "matchCriteriaId": "81853A68-8286-4159-87FC-91CE94484DDE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:2.7b4:*:*:*:*:*:*:*",
              "matchCriteriaId": "6A2C2C2E-227C-477A-8E6B-D82C941A778F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:2.7b5:*:*:*:*:*:*:*",
              "matchCriteriaId": "9B0FE26D-8B0B-4620-BC5B-6C0E0D635FA5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:2.9.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "BDB7A45D-C67B-4D46-94AF-3BAA75C06157",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "D68136DD-B309-47D7-9320-D48EF6E0F9B9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.0.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "8F698620-41A9-4058-B3A2-68134FDEACD0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.1.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "9775BB2D-B945-4533-BBA7-2602CD4B2C0B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.1.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "0FE2C974-BC5F-4D18-8B56-6E76CFC8237F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.2.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "621BAE10-276D-44DA-A124-51D4A00E7552",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.4.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "CE42231C-7764-41ED-B7A3-641CFC58BBC8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.4.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "4655CA87-E507-4FAF-A848-C502BE8564FD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.4.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "DAE9A7B0-6DF8-44BC-A9EC-7EB89AC91722",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.5.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "DB5E5D66-FF08-4B26-A2BD-421E7FFF73B2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.5.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "3A29A154-2CF6-441B-8715-84F49F21A15A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.5.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "185BFE23-5F13-45A1-B514-21957A613799",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Multiple buffer overflows in the psscan function in ps.c for gv (ghostview) allow remote attackers to execute arbitrary code via a Postscript file with a long (1) BoundingBox, (2) comment, (3) Orientation, (4) PageOrder, or (5) Pages value."
    }
  ],
  "id": "CVE-2004-1717",
  "lastModified": "2025-04-03T01:03:51.193",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 7.5,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": true,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2004-08-16T04:00:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://marc.info/?l=bugtraq\u0026m=109267677114331\u0026w=2"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit",
        "Vendor Advisory"
      ],
      "url": "http://www.securityfocus.com/bid/10944"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17019"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://marc.info/?l=bugtraq\u0026m=109267677114331\u0026w=2"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit",
        "Vendor Advisory"
      ],
      "url": "http://www.securityfocus.com/bid/10944"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17019"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vendorComments": [
    {
      "comment": "This CVE is a duplicate (rediscovery) of CVE-2002-0838",
      "lastModified": "2006-08-30T00:00:00",
      "organization": "Red Hat"
    }
  ],
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

FKIE_CVE-2002-1569

Vulnerability from fkie_nvd - Published: 2003-11-17 05:00 - Updated: 2025-04-03 01:03
Severity ?
Summary
gv 3.5.8, and possibly earlier versions, allows remote attackers to execute arbitrary commands via shell metacharacters in the filename for (1) a PDF file or (2) a gzip file.
References
cve@mitre.orghttp://archives.neohapsis.com/archives/bugtraq/2002-10/0033.html
cve@mitre.orghttp://marc.info/?l=bugtraq&m=103348446009076&w=2
cve@mitre.orghttp://www.epita.fr/~bevand_m/asa/asa-0000Exploit, Patch, Vendor Advisory
cve@mitre.orghttp://www.securityfocus.com/bid/5840Patch, Vendor Advisory
cve@mitre.orghttps://exchange.xforce.ibmcloud.com/vulnerabilities/10231
af854a3a-2127-422b-91ae-364da2661108http://archives.neohapsis.com/archives/bugtraq/2002-10/0033.html
af854a3a-2127-422b-91ae-364da2661108http://marc.info/?l=bugtraq&m=103348446009076&w=2
af854a3a-2127-422b-91ae-364da2661108http://www.epita.fr/~bevand_m/asa/asa-0000Exploit, Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/5840Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/10231
Impacted products
Vendor Product Version
ghostview ghostview 1.3
ghostview ghostview 1.4
ghostview ghostview 1.4.1
ghostview ghostview 1.5
gv gv 2.7.6
gv gv 2.7b1
gv gv 2.7b2
gv gv 2.7b3
gv gv 2.7b4
gv gv 2.7b5
gv gv 2.9.4
gv gv 3.0.0
gv gv 3.0.4
gv gv 3.1.4
gv gv 3.1.6
gv gv 3.2.4
gv gv 3.4.2
gv gv 3.4.3
gv gv 3.4.12
gv gv 3.5.2
gv gv 3.5.3
gv gv 3.5.8
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:ghostview:ghostview:1.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "DA5F8E03-79D8-4C2B-AD85-59D23B5B202A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ghostview:ghostview:1.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "D8C56CA2-6EAA-4F86-B637-69602FCA12BF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ghostview:ghostview:1.4.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "7D3AC6EB-BEE8-404E-ABEE-3FCE9A9DEE36",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ghostview:ghostview:1.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "01EA37BA-1583-4B74-8578-8ED3DAC7E28E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:2.7.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "21635C49-6F67-4852-A34B-6CA758D92F48",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:2.7b1:*:*:*:*:*:*:*",
              "matchCriteriaId": "B2CDF1F6-AEA8-493B-AF8E-B06C2AFD0DCC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:2.7b2:*:*:*:*:*:*:*",
              "matchCriteriaId": "E062D50D-DEFA-45A6-B749-E3B7CAACD621",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:2.7b3:*:*:*:*:*:*:*",
              "matchCriteriaId": "81853A68-8286-4159-87FC-91CE94484DDE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:2.7b4:*:*:*:*:*:*:*",
              "matchCriteriaId": "6A2C2C2E-227C-477A-8E6B-D82C941A778F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:2.7b5:*:*:*:*:*:*:*",
              "matchCriteriaId": "9B0FE26D-8B0B-4620-BC5B-6C0E0D635FA5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:2.9.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "BDB7A45D-C67B-4D46-94AF-3BAA75C06157",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "D68136DD-B309-47D7-9320-D48EF6E0F9B9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.0.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "8F698620-41A9-4058-B3A2-68134FDEACD0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.1.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "9775BB2D-B945-4533-BBA7-2602CD4B2C0B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.1.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "0FE2C974-BC5F-4D18-8B56-6E76CFC8237F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.2.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "621BAE10-276D-44DA-A124-51D4A00E7552",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.4.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "CE42231C-7764-41ED-B7A3-641CFC58BBC8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.4.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "4655CA87-E507-4FAF-A848-C502BE8564FD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.4.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "DAE9A7B0-6DF8-44BC-A9EC-7EB89AC91722",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.5.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "DB5E5D66-FF08-4B26-A2BD-421E7FFF73B2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.5.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "3A29A154-2CF6-441B-8715-84F49F21A15A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.5.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "185BFE23-5F13-45A1-B514-21957A613799",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "gv 3.5.8, and possibly earlier versions, allows remote attackers to execute arbitrary commands via shell metacharacters in the filename for (1) a PDF file or (2) a gzip file."
    },
    {
      "lang": "es",
      "value": "gv 3.5.8, y posiblemente versiones anteriores, permite a atacantes remotos ejecutar comandos arbitrarios mediante metacaract\u00e9res de shell en el nombre de fichero de un fichero PDF o GZIP."
    }
  ],
  "id": "CVE-2002-1569",
  "lastModified": "2025-04-03T01:03:51.193",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 7.5,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": true,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2003-11-17T05:00:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://archives.neohapsis.com/archives/bugtraq/2002-10/0033.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://marc.info/?l=bugtraq\u0026m=103348446009076\u0026w=2"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit",
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.epita.fr/~bevand_m/asa/asa-0000"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.securityfocus.com/bid/5840"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10231"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://archives.neohapsis.com/archives/bugtraq/2002-10/0033.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://marc.info/?l=bugtraq\u0026m=103348446009076\u0026w=2"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit",
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.epita.fr/~bevand_m/asa/asa-0000"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.securityfocus.com/bid/5840"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10231"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

FKIE_CVE-2002-0838

Vulnerability from fkie_nvd - Published: 2002-10-10 04:00 - Updated: 2025-04-03 01:03
Severity ?
Summary
Buffer overflow in (1) gv 3.5.8 and earlier, (2) gvv 1.0.2 and earlier, (3) ggv 1.99.90 and earlier, (4) gnome-gv, and (5) kghostview in kdegraphics 2.2.2 and earlier, allows attackers to execute arbitrary code via a malformed (a) PDF or (b) PostScript file, which is processed by an unsafe call to sscanf.
References
cve@mitre.orgftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-053.0.txt
cve@mitre.orghttp://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000542
cve@mitre.orghttp://marc.info/?l=bugtraq&m=103305615613319&w=2
cve@mitre.orghttp://marc.info/?l=bugtraq&m=103305778615625&w=2
cve@mitre.orghttp://marc.info/?l=bugtraq&m=103487806800388&w=2
cve@mitre.orghttp://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/47780&zone_32=category:security
cve@mitre.orghttp://www.debian.org/security/2002/dsa-176
cve@mitre.orghttp://www.debian.org/security/2002/dsa-179
cve@mitre.orghttp://www.debian.org/security/2002/dsa-182
cve@mitre.orghttp://www.iss.net/security_center/static/10201.phpVendor Advisory
cve@mitre.orghttp://www.kb.cert.org/vuls/id/600777Third Party Advisory, US Government Resource
cve@mitre.orghttp://www.kde.org/info/security/advisory-20021008-1.txt
cve@mitre.orghttp://www.mandriva.com/security/advisories?name=MDKSA-2002:069
cve@mitre.orghttp://www.mandriva.com/security/advisories?name=MDKSA-2002:071
cve@mitre.orghttp://www.redhat.com/support/errata/RHSA-2002-207.html
cve@mitre.orghttp://www.redhat.com/support/errata/RHSA-2002-212.htmlPatch, Vendor Advisory
cve@mitre.orghttp://www.redhat.com/support/errata/RHSA-2002-220.html
cve@mitre.orghttp://www.securityfocus.com/bid/5808Exploit, Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-053.0.txt
af854a3a-2127-422b-91ae-364da2661108http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000542
af854a3a-2127-422b-91ae-364da2661108http://marc.info/?l=bugtraq&m=103305615613319&w=2
af854a3a-2127-422b-91ae-364da2661108http://marc.info/?l=bugtraq&m=103305778615625&w=2
af854a3a-2127-422b-91ae-364da2661108http://marc.info/?l=bugtraq&m=103487806800388&w=2
af854a3a-2127-422b-91ae-364da2661108http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/47780&zone_32=category:security
af854a3a-2127-422b-91ae-364da2661108http://www.debian.org/security/2002/dsa-176
af854a3a-2127-422b-91ae-364da2661108http://www.debian.org/security/2002/dsa-179
af854a3a-2127-422b-91ae-364da2661108http://www.debian.org/security/2002/dsa-182
af854a3a-2127-422b-91ae-364da2661108http://www.iss.net/security_center/static/10201.phpVendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.kb.cert.org/vuls/id/600777Third Party Advisory, US Government Resource
af854a3a-2127-422b-91ae-364da2661108http://www.kde.org/info/security/advisory-20021008-1.txt
af854a3a-2127-422b-91ae-364da2661108http://www.mandriva.com/security/advisories?name=MDKSA-2002:069
af854a3a-2127-422b-91ae-364da2661108http://www.mandriva.com/security/advisories?name=MDKSA-2002:071
af854a3a-2127-422b-91ae-364da2661108http://www.redhat.com/support/errata/RHSA-2002-207.html
af854a3a-2127-422b-91ae-364da2661108http://www.redhat.com/support/errata/RHSA-2002-212.htmlPatch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.redhat.com/support/errata/RHSA-2002-220.html
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/5808Exploit, Patch, Vendor Advisory
Impacted products
Vendor Product Version
ggv ggv 1.0.2
ghostview ghostview 1.3
ghostview ghostview 1.4
ghostview ghostview 1.4.1
ghostview ghostview 1.5
gv gv 2.7.6
gv gv 2.7b1
gv gv 2.7b2
gv gv 2.7b3
gv gv 2.7b4
gv gv 2.7b5
gv gv 2.9.4
gv gv 3.0.0
gv gv 3.0.4
gv gv 3.1.4
gv gv 3.1.6
gv gv 3.2.4
gv gv 3.4.2
gv gv 3.4.3
gv gv 3.4.12
gv gv 3.5.2
gv gv 3.5.3
gv gv 3.5.8
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:ggv:ggv:1.0.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "60400F6B-8835-4B75-A084-33112F6AF8DD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ghostview:ghostview:1.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "DA5F8E03-79D8-4C2B-AD85-59D23B5B202A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ghostview:ghostview:1.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "D8C56CA2-6EAA-4F86-B637-69602FCA12BF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ghostview:ghostview:1.4.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "7D3AC6EB-BEE8-404E-ABEE-3FCE9A9DEE36",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ghostview:ghostview:1.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "01EA37BA-1583-4B74-8578-8ED3DAC7E28E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:2.7.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "21635C49-6F67-4852-A34B-6CA758D92F48",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:2.7b1:*:*:*:*:*:*:*",
              "matchCriteriaId": "B2CDF1F6-AEA8-493B-AF8E-B06C2AFD0DCC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:2.7b2:*:*:*:*:*:*:*",
              "matchCriteriaId": "E062D50D-DEFA-45A6-B749-E3B7CAACD621",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:2.7b3:*:*:*:*:*:*:*",
              "matchCriteriaId": "81853A68-8286-4159-87FC-91CE94484DDE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:2.7b4:*:*:*:*:*:*:*",
              "matchCriteriaId": "6A2C2C2E-227C-477A-8E6B-D82C941A778F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:2.7b5:*:*:*:*:*:*:*",
              "matchCriteriaId": "9B0FE26D-8B0B-4620-BC5B-6C0E0D635FA5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:2.9.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "BDB7A45D-C67B-4D46-94AF-3BAA75C06157",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "D68136DD-B309-47D7-9320-D48EF6E0F9B9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.0.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "8F698620-41A9-4058-B3A2-68134FDEACD0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.1.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "9775BB2D-B945-4533-BBA7-2602CD4B2C0B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.1.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "0FE2C974-BC5F-4D18-8B56-6E76CFC8237F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.2.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "621BAE10-276D-44DA-A124-51D4A00E7552",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.4.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "CE42231C-7764-41ED-B7A3-641CFC58BBC8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.4.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "4655CA87-E507-4FAF-A848-C502BE8564FD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.4.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "DAE9A7B0-6DF8-44BC-A9EC-7EB89AC91722",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.5.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "DB5E5D66-FF08-4B26-A2BD-421E7FFF73B2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.5.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "3A29A154-2CF6-441B-8715-84F49F21A15A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gv:gv:3.5.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "185BFE23-5F13-45A1-B514-21957A613799",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Buffer overflow in (1) gv 3.5.8 and earlier, (2) gvv 1.0.2 and earlier, (3) ggv 1.99.90 and earlier, (4) gnome-gv, and (5) kghostview in kdegraphics 2.2.2 and earlier, allows attackers to execute arbitrary code via a malformed (a) PDF or (b) PostScript file, which is processed by an unsafe call to sscanf."
    },
    {
      "lang": "es",
      "value": "Desbordamiento de Buffer en gv 3.5.8 y anteriores, y gvv 1.0.2 y anteriores, que permite a los atacantes la ejecuci\u00f3n arbitraria de c\u00f3digo v\u00eda ficheros PDF o PostScript con caberceras erroneas al ser procesadas por una llamada sscanf no segura."
    }
  ],
  "id": "CVE-2002-0838",
  "lastModified": "2025-04-03T01:03:51.193",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "LOCAL",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 4.6,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": true,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2002-10-10T04:00:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-053.0.txt"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000542"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://marc.info/?l=bugtraq\u0026m=103305615613319\u0026w=2"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://marc.info/?l=bugtraq\u0026m=103305778615625\u0026w=2"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://marc.info/?l=bugtraq\u0026m=103487806800388\u0026w=2"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/47780\u0026zone_32=category:security"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.debian.org/security/2002/dsa-176"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.debian.org/security/2002/dsa-179"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.debian.org/security/2002/dsa-182"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.iss.net/security_center/static/10201.php"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/600777"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.kde.org/info/security/advisory-20021008-1.txt"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2002:069"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2002:071"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.redhat.com/support/errata/RHSA-2002-207.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.redhat.com/support/errata/RHSA-2002-212.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.redhat.com/support/errata/RHSA-2002-220.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit",
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.securityfocus.com/bid/5808"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-053.0.txt"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000542"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://marc.info/?l=bugtraq\u0026m=103305615613319\u0026w=2"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://marc.info/?l=bugtraq\u0026m=103305778615625\u0026w=2"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://marc.info/?l=bugtraq\u0026m=103487806800388\u0026w=2"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/47780\u0026zone_32=category:security"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.debian.org/security/2002/dsa-176"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.debian.org/security/2002/dsa-179"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.debian.org/security/2002/dsa-182"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.iss.net/security_center/static/10201.php"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/600777"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.kde.org/info/security/advisory-20021008-1.txt"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2002:069"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2002:071"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.redhat.com/support/errata/RHSA-2002-207.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.redhat.com/support/errata/RHSA-2002-212.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.redhat.com/support/errata/RHSA-2002-220.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit",
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.securityfocus.com/bid/5808"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}