Unrated severityNVD Advisory· Published Nov 17, 2003· Updated Apr 16, 2026

CVE-2002-1569

Description

gv 3.5.8, and possibly earlier versions, allows remote attackers to execute arbitrary commands via shell metacharacters in the filename for (1) a PDF file or (2) a gzip file.

Affected products

Ghostview/Ghostview4 versions
cpe:2.3:a:ghostview:ghostview:1.3:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:ghostview:ghostview:1.3:*:*:*:*:*:*:*
- cpe:2.3:a:ghostview:ghostview:1.4:*:*:*:*:*:*:*
- cpe:2.3:a:ghostview:ghostview:1.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:ghostview:ghostview:1.5:*:*:*:*:*:*:*
Gv/Gv18 versions
cpe:2.3:a:gv:gv:2.7.6:*:*:*:*:*:*:*+ 17 more
- cpe:2.3:a:gv:gv:2.7.6:*:*:*:*:*:*:*
- cpe:2.3:a:gv:gv:2.7b1:*:*:*:*:*:*:*
- cpe:2.3:a:gv:gv:2.7b2:*:*:*:*:*:*:*
- cpe:2.3:a:gv:gv:2.7b3:*:*:*:*:*:*:*
- cpe:2.3:a:gv:gv:2.7b4:*:*:*:*:*:*:*
- cpe:2.3:a:gv:gv:2.7b5:*:*:*:*:*:*:*
- cpe:2.3:a:gv:gv:2.9.4:*:*:*:*:*:*:*
- cpe:2.3:a:gv:gv:3.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:gv:gv:3.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:gv:gv:3.1.4:*:*:*:*:*:*:*
- cpe:2.3:a:gv:gv:3.1.6:*:*:*:*:*:*:*
- cpe:2.3:a:gv:gv:3.2.4:*:*:*:*:*:*:*
- cpe:2.3:a:gv:gv:3.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:gv:gv:3.4.3:*:*:*:*:*:*:*
- cpe:2.3:a:gv:gv:3.4.12:*:*:*:*:*:*:*
- cpe:2.3:a:gv:gv:3.5.2:*:*:*:*:*:*:*
- cpe:2.3:a:gv:gv:3.5.3:*:*:*:*:*:*:*
- cpe:2.3:a:gv:gv:3.5.8:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/5840nvdPatchVendor Advisory
www.epita.fr/~bevand_m/asa/asa-0000nvdExploitPatchVendor Advisory
archives.neohapsis.com/archives/bugtraq/2002-10/0033.htmlnvd
marc.infonvd
exchange.xforce.ibmcloud.com/vulnerabilities/10231nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000