CVE-2001-1353
Summary
ghostscript before 6.51 allows local users to read and write arbitrary files as the 'lp' user via the file operator, even with -dSAFER enabled.
- HIGH
- LOCAL
- NONE
- PARTIAL
- PARTIAL
- NONE
References
Advisory Timeline
- Published
ghostscript before 6.51 allows local users to read and write arbitrary files as the 'lp' user via the file operator, even with -dSAFER enabled.