Home Packages KEV Critical Insights Jobs Pricing

Loading…

Data from OSV.dev, CISA KEV, and FIRST EPSS.Sync status GitHub

CVE-2004-1170 — a2ps - unsanitised input · VulnScope

CVE-2004-1170

a2ps - unsanitised input

EPSS 15.6%

Description

a2ps 4.13 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename.

How to fix CVE-2004-1170

To remediate CVE-2004-1170, upgrade the affected package to a fixed version below.

Debian/a2ps—upgrade to 1:4.13b-4.2 or later
Debian/a2ps—upgrade to 1:4.13b-4.2 or later

Is CVE-2004-1170 being exploited?

Moderate — EPSS is 15.6%. Track this CVE but it's not at the top of the prioritisation list.

Affected packages (2)

from 0, < 1:4.13b-4.2
from 0, < 1:4.13b-4.2

References (1)

ADVISORYsecurity-tracker.debian.org/tracker/CVE-2004-1170

Metadata

Published: 1/10/2005
Modified: 4/28/2026

Also known as:

DSA-612-1dsa
DEBIAN-CVE-2004-1170debian