CVE-2009-1383

EPSS 0.99%

Published: 7/14/2009Modified: 4/28/2026

Description

The getdirective function in mathtex.cgi in mathTeX, when downloaded before 20090713, allows remote attackers to execute arbitrary commands via shell metacharacters in the dpi tag.

Affected packages (1)

Debian/mathtexfrom 0, < 1.03-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2009-1383