CVE-2017-8291

2017-04-26T21:59:02
ID CVE-2017-8291
Type cve
Reporter NVD
Modified 2018-01-04T21:31:53

Description

Artifex Ghostscript through 2017-04-26 allows -dSAFER bypass and remote command execution via .rsdparams type confusion with a "/OutputFile (%pipe%" substring in a crafted .eps document that is an input to the gs program, as exploited in the wild in April 2017.