CVE-2002-1275

html2ps 1.0 - RCE

Title source: llm

Description

Unknown vulnerability in html2ps HTML/PostScript converter 1.0, when used within LPRng, allows remote attackers to execute arbitrary code via "unsanitized input."

Exploits (1)

exploitdb WORKING POC VERIFIED

by Sebastian Krahmer · perlremoteunix

https://www.exploit-db.com/exploits/21974

View Code ZIP pw:eip

References (4)

[Vendor Advisory] http://www.novell.com/linux/security/advisories/2002_040_lprng_html2ps.html

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/6079

[Patch, Vendor Advisory] http://www.debian.org/security/2002/dsa-192

[Vendor Advisory] http://www.iss.net/security_center/static/10526.php

Scores

EPSS 0.0846

EPSS Percentile 92.4%

Details

Status published

Products (1)

html2ps_project/html2ps 1.0 b1 (7 CPE variants)

Published Nov 12, 2002

Tracked Since Feb 18, 2026