CVE-2002-2047

See a problem?
Source
https://nvd.nist.gov/vuln/detail/CVE-2002-2047
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2002-2047.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2002-2047
Published
2002-12-31T05:00:00Z
Modified
2024-06-30T12:01:22Z
Summary
[none]
Details

The file preview functionality in Sketch 0.6.12 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of an encapsulated Postscript (EPS) file.

References

Affected packages

Debian:11 / sketch

Package

Name
sketch
Purl
pkg:deb/debian/sketch?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.6.13-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:12 / sketch

Package

Name
sketch
Purl
pkg:deb/debian/sketch?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.6.13-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:13 / sketch

Package

Name
sketch
Purl
pkg:deb/debian/sketch?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.6.13-1

Ecosystem specific

{
    "urgency": "low"
}