CVE-2014-3741

Published: Oct 23, 2017

Modified: Aug 6, 2024

PUBLISHED

Description

The printDirect function in lib/printer.js in the node-printer module 0.0.1 and earlier for Node.js allows remote attackers to execute arbitrary commands via unspecified characters in the lpr command.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[oss-security] 20140514 Re: CVE request: various NodeJS module vulnerabilities

mailing-list

x_refsource_MLIST

[oss-security] 20140513 CVE request: various NodeJS module vulnerabilities

mailing-list

x_refsource_MLIST

https://nodesecurity.io/advisories/printer_potential_command_injection

x_refsource_MISC

https://github.com/tojocky/node-printer/commit/e001e38738c17219a1d9dd8c31f7d82b9c0013c7

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2014-3741

Description

Affected Products

References