FreeBSD Ports: A2ps-a4 Network Vulnerability

Summary

The remote host is missing an update to the system as announced in the referenced advisory.

Solution

Update your system with the appropriate patches or software upgrades. http://www.osvdb.org/9176 http://marc.theaimsgroup.com/?l=full-disclosure&m=109334851517137 http://www.vuxml.org/freebsd/8091fcea-f35e-11d8-81b0-000347a4fa7d.html

Insight

The following packages are affected: a2ps-a4 a2ps-letter a2ps-letterdj CVE-2004-1170 a2ps 4.13 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename.

Severity

Classification

CVE CVE-2004-1170
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

FreeBSD Ports: bugzilla, ja-bugzilla
FreeBSD Ports: bind99
FreeBSD Ports: courier
FreeBSD Ports: apache
FreeBSD Ports: clamav

FreeBSD Ports: a2ps-a4

Take action and discover your vulnerabilities