Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
0

CVE-2002-0836

Disclosure Date: October 28, 2002
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

dvips converter for Postscript files in the tetex package calls the system() function insecurely, which allows remote attackers to execute arbitrary commands via certain print jobs, possibly involving fonts.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

Technical Analysis