VYPR
Unrated severityNVD Advisory· Published Dec 31, 2002· Updated Jun 16, 2026

CVE-2002-2047

CVE-2002-2047

Description

The file preview functionality in Sketch 0.6.12 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of an encapsulated Postscript (EPS) file.

Affected products

2
  • Sketch/Sketch2 versions
    cpe:2.3:a:sketch:sketch:0.6.12:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:sketch:sketch:0.6.12:*:*:*:*:*:*:*
    • (no CPE)range: <=0.6.12

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.