VYPR

dtprintinfo

by Common Desktop Environment

CVEs (1)

  • CVE-2023-24040HigJan 21, 2023
    risk 0.46cvss 7.1epss 0.00

    dtprintinfo in Common Desktop Environment 1.6 has a bug in the parser of lpstat (an invoked external command) during listing of the names of available printers. This allows low-privileged local users to inject arbitrary printer names via the $HOME/.printers file. This injection…