Sign in Get started

← All advisories

Unrated severityNVD Advisory· Published Sep 18, 2001· Updated Apr 16, 2026

CVE-2001-1353

CVE-2001-1353

Description

ghostscript before 6.51 allows local users to read and write arbitrary files as the 'lp' user via the file operator, even with -dSAFER enabled.

Affected products

1

Aladdin Enterprises/Ghostscript
cpe:2.3:a:aladdin_enterprises:ghostscript:*:*:*:*:*:*:*:*
Range: <=6.51

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

4

www.redhat.com/support/errata/RHSA-2001-138.htmlnvdPatchVendor Advisory
archives.neohapsis.com/archives/hp/2001-q4/0069.htmlnvd
marc.infonvd
rhn.redhat.com/errata/RHSA-2001-112.htmlnvd

News mentions

0

No linked articles in our index yet.