CVE-2002-2047

2005-07-1404:00:00

mitre

www.cve.org

sketch

file preview

vulnerability

remote attackers

arbitrary commands

shell metacharacters

encapsulated postscript

eps file

AI Score

7.6

Confidence

High

EPSS

0.013

Percentile

86.0%

JSON

The file preview functionality in Sketch 0.6.12 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of an encapsulated Postscript (EPS) file.

References

securitytracker.com/id?1003818

sketch.sourceforge.net/oldnews.html#N1

www.iss.net/security_center/static/8469.php

www.securityfocus.com/bid/4296