CyberSec.Space Logo
Back to CVE Browser

CVE-2002-2047

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1120%
EPSS Percentile20.23th
PublishedDec 31, 2002
Last ModifiedApr 16, 2026

Vulnerability Description

The file preview functionality in Sketch 0.6.12 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of an encapsulated Postscript (EPS) file.

Affected Platforms (CPE)

πŸ“¦
Sketch

Sketch

= 0.6.12

References & Advisories

πŸ”— http://securitytracker.com/id?1003818
πŸ”— http://sketch.sourceforge.net/oldnews.html#N1
πŸ”— http://www.iss.net/security_center/static/8469.php
πŸ”— http://www.securityfocus.com/bid/4296
πŸ”— http://securitytracker.com/id?1003818
πŸ”— http://sketch.sourceforge.net/oldnews.html#N1
πŸ”— http://www.iss.net/security_center/static/8469.php
πŸ”— http://www.securityfocus.com/bid/4296

Related Vulnerabilities

CVE-2026-323119.8

Flowsint is an open-source OSINT graph exploration tool designed for cybersecurity investigation, transparency, and verification. ...

CVE-2021-405319.8

Sketch before 75 allows library feeds to be used to bypass file quarantine. Files are automatically downloaded and opened, without...

CVE-2014-69395.4

The Sketch W Friends FREE -Tablets (aka air.com.xlabz.SketchWFriendsFree) application 5.0.0 for Android does not verify X.509 cert...

CVE-2002-074710.0

Buffer overflow in lsmcode in AIX 4.3.3.