7.5 High
AI Score
Confidence
Low
5.1 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
0.923 High
EPSS
Percentile
98.9%
Stack-based buffer overflow in the ps_gettext function in ps.c for GNU gv 3.6.2, and possibly earlier versions, allows user-assisted attackers to execute arbitrary code via a PostScript (PS) file with certain headers that contain long comments, as demonstrated using the (1) DocumentMedia, (2) DocumentPaperSizes, and possibly (3) PageMedia and (4) PaperSize headers. NOTE: this issue can be exploited through other products that use gv such as evince.
secunia.com/advisories/22787
secunia.com/advisories/22932
secunia.com/advisories/23006
secunia.com/advisories/23018
secunia.com/advisories/23111
secunia.com/advisories/23118
secunia.com/advisories/23183
secunia.com/advisories/23266
secunia.com/advisories/23306
secunia.com/advisories/23335
secunia.com/advisories/23353
secunia.com/advisories/23409
secunia.com/advisories/23579
secunia.com/advisories/24649
secunia.com/advisories/24787
security.gentoo.org/glsa/glsa-200611-20.xml
security.gentoo.org/glsa/glsa-200703-24.xml
security.gentoo.org/glsa/glsa-200704-06.xml
www.debian.org/security/2006/dsa-1214
www.debian.org/security/2006/dsa-1243
www.kb.cert.org/vuls/id/352825
www.mandriva.com/security/advisories?name=MDKSA-2006:214
www.mandriva.com/security/advisories?name=MDKSA-2006:229
www.novell.com/linux/security/advisories/2006_26_sr.html
www.novell.com/linux/security/advisories/2006_28_sr.html
www.novell.com/linux/security/advisories/2006_29_sr.html
www.securityfocus.com/archive/1/451057/100/0/threaded
www.securityfocus.com/archive/1/451422/100/200/threaded
www.securityfocus.com/archive/1/452868/100/0/threaded
www.securityfocus.com/bid/20978
www.ubuntu.com/usn/usn-390-1
www.ubuntu.com/usn/usn-390-2
www.ubuntu.com/usn/usn-390-3
www.vupen.com/english/advisories/2006/4424
www.vupen.com/english/advisories/2006/4747
exchange.xforce.ibmcloud.com/vulnerabilities/30153
exchange.xforce.ibmcloud.com/vulnerabilities/30555
issues.rpath.com/browse/RPL-850
www.exploit-db.com/exploits/2858