CVE-2004-1185
EPSS 7.4%
Description
Enscript 1.6.3 does not sanitize filenames, which allows remote attackers or local users to execute arbitrary commands via crafted filenames.
How to fix CVE-2004-1185
To remediate CVE-2004-1185, upgrade the affected package to a fixed version below.
- Debian/enscript—upgrade to 1.6.4-6 or later
Is CVE-2004-1185 being exploited?
Moderate — EPSS is 7.4%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (1)
- from 0, < 1.6.4-6