CVE-2004-1185

Publication date 21 January 2005

Last updated 17 July 2025

Ubuntu priority

Medium

Why this priority?

Enscript 1.6.3 does not sanitize filenames, which allows remote attackers or local users to execute arbitrary commands via crafted filenames.

Status

No maintained releases are affected by this CVE.

Package Ubuntu Release Status
enscript 7.04 feisty
Fixed 1.6.4-7
6.10 edgy
Fixed 1.6.4-7
6.06 LTS dapper
Fixed 1.6.4-7

References

Related Ubuntu Security Notices (USN)

    • USN-68-1
    • enscript vulnerabilities
    • 24 January 2005

Other references