CVE-2004-1184
enscript - several
EPSS 0.94%
Description
The EPSF pipe support in enscript 1.6.3 allows remote attackers or local users to execute arbitrary commands via shell metacharacters.
How to fix CVE-2004-1184
To remediate CVE-2004-1184, upgrade the affected package to a fixed version below.
- Debian/enscript—upgrade to 1.6.4-6 or later
- Debian/enscript—upgrade to 1.6.3-1.3 or later
Is CVE-2004-1184 being exploited?
Low — EPSS is 0.9%, meaning exploitation activity has not been observed at scale.
Affected packages (2)
- from 0, < 1.6.4-6
- from 0, < 1.6.3-1.3