CVE-2002-0836
CVSS7.5
发布时间 :2002-10-28 00:00:00
修订时间 :2016-10-17 22:22:22
NMCOS    

[原文]dvips converter for Postscript files in the tetex package calls the system() function insecurely, which allows remote attackers to execute arbitrary commands via certain print jobs, possibly involving fonts.


[CNNVD]dvips执行任意命令漏洞(CNNVD-200210-313)

        用于tetex包的Postscript文件中dvips转换器不安全调用system()函数。远程攻击者可以借助某些打印工作执行任意命令,其中可能包含打印字体。

- CVSS (基础分值)

CVSS分值: 7.5 [严重(HIGH)]
机密性影响: [--]
完整性影响: [--]
可用性影响: [--]
攻击复杂度: [--]
攻击向量: [--]
身份认证: [--]

- CPE (受影响的平台与产品)

cpe:/o:redhat:linux:7.0Red Hat Linux 7.0
cpe:/o:redhat:linux:6.2Red Hat Linux 6.2
cpe:/o:redhat:linux:7.1Red Hat Linux 7.1
cpe:/o:redhat:linux:8.0Red Hat Linux 8.0
cpe:/o:redhat:linux:7.2Red Hat Linux 7.2
cpe:/o:redhat:linux:7.1::ia64
cpe:/o:redhat:linux:7.2::ia64
cpe:/o:redhat:linux:7.3Red Hat Linux 7.3
cpe:/o:redhat:linux:7.2::i386
cpe:/o:redhat:linux:7.0::i386
cpe:/o:redhat:linux:7.3::i386
cpe:/o:redhat:linux:6.2::i386
cpe:/o:redhat:linux:7.1::i386
cpe:/o:redhat:linux:8.0::i386
cpe:/o:hp:secure_os:1.0::linux
cpe:/o:mandrakesoft:mandrake_linux:8.2MandrakeSoft Mandrake Linux 8.2
cpe:/o:mandrakesoft:mandrake_linux:8.1::ia64
cpe:/o:mandrakesoft:mandrake_linux:7.2MandrakeSoft Mandrake Linux 7.2
cpe:/o:mandrakesoft:mandrake_linux:8.1MandrakeSoft Mandrake Linux 8.1
cpe:/o:mandrakesoft:mandrake_linux:9.0MandrakeSoft Mandrake Linux 9.0
cpe:/o:redhat:linux:6.2::alpha
cpe:/o:redhat:linux:7.1::alpha
cpe:/o:mandrakesoft:mandrake_linux:8.0MandrakeSoft Mandrake Linux 8.0
cpe:/o:mandrakesoft:mandrake_linux:8.0::ppc
cpe:/o:redhat:linux:7.0::alpha
cpe:/o:mandrakesoft:mandrake_linux:8.2::ppc
cpe:/o:redhat:linux:6.2::sparc

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0836
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2002-0836
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200210-313
(官方数据源) CNNVD

- 其它链接及资源

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000537
(UNKNOWN)  CONECTIVA  CLA-2002:537
http://marc.info/?l=bugtraq&m=103497852330838&w=2
(UNKNOWN)  BUGTRAQ  20021018 GLSA: tetex
http://marc.info/?l=bugtraq&m=104005975415582&w=2
(UNKNOWN)  BUGTRAQ  20021216 [OpenPKG-SA-2002.015] OpenPKG Security Advisory (tetex)
http://www.debian.org/security/2002/dsa-207
(VENDOR_ADVISORY)  DEBIAN  DSA-207
http://www.iss.net/security_center/static/10365.php
(VENDOR_ADVISORY)  XF  dvips-system-execute-commands(10365)
http://www.kb.cert.org/vuls/id/169841
(UNKNOWN)  CERT-VN  VU#169841
http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-070.php
(UNKNOWN)  MANDRAKE  MDKSA-2002:070
http://www.redhat.com/support/errata/RHSA-2002-194.html
(VENDOR_ADVISORY)  REDHAT  RHSA-2002:194
http://www.redhat.com/support/errata/RHSA-2002-195.html
(UNKNOWN)  REDHAT  RHSA-2002:195
http://www.securityfocus.com/advisories/4567
(UNKNOWN)  HP  HPSBTL0210-073
http://www.securityfocus.com/bid/5978
(VENDOR_ADVISORY)  BID  5978

- 漏洞信息

dvips执行任意命令漏洞
高危 访问验证错误
2002-10-28 00:00:00 2005-05-13 00:00:00
远程  
        用于tetex包的Postscript文件中dvips转换器不安全调用system()函数。远程攻击者可以借助某些打印工作执行任意命令,其中可能包含打印字体。

- 公告与补丁

        Red Hat has released RHSA-2002:195-10, which includes fixes to address this issue for Enterprise customers. Further details regarding obtaining and applying fixes are available in the referenced advisory.
        RedHat has released RHSA-2002:194-18, which includes fixes. Further details are available in the advisory.
        HP has released an advisory for HP Secure OS Software fo Linux. Users are adviced to upgrade using the fixes supplied in the RedHat advisory.
        Mandrake has released MDKSA-2002:070, which includes fixes. Further details are available in the advisory.
        Conectiva Linux has released a security advisory containing fixes. Further details are available in the advisory.
        OpenPKG has released OpenPKG-SA-2002.015, which contains fix information. Further details about obtaining fixes are available in the referenced advisory.
        Fixes:
        teTeX teTeX 1.0.6
        
        teTeX teTeX 1.0.7