CVE-2001-1002

Red Hat Linux <7.0 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2001-1002. PoCs published by zenith parsec.

AI-analyzed exploit summary This exploit leverages a misconfiguration in the DVI printfilter on systems like Red Hat 7.0, allowing remote command execution via crafted DVI directives processed by 'dvips' when invoked by 'lpd'. The PoC demonstrates command injection through a maliciously crafted TeX file.

Description

The default configuration of the DVI print filter (dvips) in Red Hat Linux 7.0 and earlier does not run dvips in secure mode when dvips is executed by lpd, which could allow remote attackers to gain privileges by printing a DVI file that contains malicious commands.

Exploits (1)

exploitdb WORKING POC VERIFIED
by zenith parsec · textremotelinux
https://www.exploit-db.com/exploits/21095

This exploit leverages a misconfiguration in the DVI printfilter on systems like Red Hat 7.0, allowing remote command execution via crafted DVI directives processed by 'dvips' when invoked by 'lpd'. The PoC demonstrates command injection through a maliciously crafted TeX file.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: TeTeX (dvips) with misconfigured DVI printfilter on Red Hat 7.0
No auth needed
Prerequisites: TeTeX with dvips installed · Misconfigured DVI printfilter · Access to LPRng or similar print spooler
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/3241
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/16509
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=99892644616749&w=2
Patch, Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2001-102.html

Scores

EPSS 0.0932
EPSS Percentile 94.7%

Details

Status published
Products (3)
redhat/linux 6.2
redhat/linux 7.0
redhat/linux 7.1
Published Aug 31, 2001
Tracked Since Feb 18, 2026