Lucene search

[email protected]CVE-2010-1869

HistoryMay 12, 2010 - 11:46 a.m.

CVE-2010-1869

2010-05-1211:46:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2010-1869

security

buffer overflow

ghostscript

arbitrary code execution

nvd

7.4 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.005 Low

EPSS

Percentile

76.6%

JSON

Stack-based buffer overflow in the parser function in GhostScript 8.70 and 8.64 allows context-dependent attackers to execute arbitrary code via a crafted PostScript file.

CPENameOperatorVersion
artifex:gpl_ghostscriptartifex gpl ghostscripteq8.64
artifex:gpl_ghostscriptartifex gpl ghostscripteq8.70

CPE	Name	Operator	Version
artifex:gpl_ghostscript	artifex gpl ghostscript	eq	8.64
artifex:gpl_ghostscript	artifex gpl ghostscript	eq	8.70

References

lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html

secunia.com/advisories/39753

secunia.com/advisories/40580

www.checkpoint.com/defense/advisories/public/2010/cpai-10-May.html

www.mandriva.com/security/advisories?name=MDVSA-2010:102

www.securityfocus.com/archive/1/511243/100/0/threaded

www.securityfocus.com/bid/40103

www.securitytracker.com/id?1024003

www.ubuntu.com/usn/USN-961-1

www.vupen.com/english/advisories/2010/1138

www.vupen.com/english/advisories/2010/1195

7.4 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.005 Low

EPSS

Percentile

76.6%

JSON

Related for CVE-2010-1869

checkpoint_advisories1 prion1 openvas10 ubuntucve1 nessus7 securityvulns3 debiancve1 ubuntu1 osv1 debian1