VDB
CVE-2001-1022
CVE-2001-1022
PUBLISHED
Reported by mitre · Published June 25, 2002
Format string vulnerability in pic utility in groff 1.16.1 and other versions, and jgroff before 1.15, allows remote attackers to bypass the -S option and execute arbitrary commands via format string specifiers in the plot command.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| n/a | n/a | n/a, *, * |
Timeline
- Jul 26, 2001 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 27, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- May 26, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
- Sep 8, 2023 EPSS Score
References
- CLA-2001:428 vendor-advisoryx_refsource_CONECTIVA
- DSA-107 vendor-advisoryx_refsource_DEBIAN
- linux-groff-format-string(6918) vdb-entryx_refsource_XF
- 3103 vdb-entryx_refsource_BID
- DSA-072 vendor-advisoryx_refsource_DEBIAN
- 1914 vdb-entryx_refsource_OSVDB
- RHSA-2002:004 vendor-advisoryx_refsource_REDHAT
- 20010727 ADV/EXP:pic/lpd remote exploit - RH 7.0 mailing-listx_refsource_BUGTRAQ