CVE-2019-3839

It was found that in ghostscript some privileged operators remained accessible from various places after the CVE-2019-6116 fix. A specially crafted PostScript file could use this flaw in order to, for example, have access to the file system outside of the constrains imposed by -dSAFER. Ghostscrip...

CVE-2019-3839

It was found that in ghostscript some privileged operators remained accessible from various places after the CVE-2019-6116 fix. A specially crafted PostScript file could use this flaw in order to, for example, have access to the file system outside of the constrains imposed by -dSAFER. Ghostscrip...

Design/Logic Flaw

It was found that in ghostscript some privileged operators remained accessible from various places after the CVE-2019-6116 fix. A specially crafted PostScript file could use this flaw in order to, for example, have access to the file system outside of the constrains imposed by -dSAFER. Ghostscrip...

CVE-2019-3839

Ghostscript (Artifex) is affected by CVE-2019-3839: after the CVE-2019-6116 fix, some privileged operators remain accessible from various PostScript contexts, allowing a crafted PostScript file to access the filesystem outside -dSAFER constraints. The issue affects Ghostscript versions before 9.2...

CVE-2019-3839

It was found that in ghostscript some privileged operators remained accessible from various places after the CVE-2019-6116 fix. A specially crafted PostScript file could use this flaw in order to, for example, have access to the file system outside of the constrains imposed by -dSAFER. Ghostscrip...

CVE-2019-3839

It was found that in ghostscript some privileged operators remained accessible from various places after the CVE-2019-6116 fix. A specially crafted PostScript file could use this flaw in order to, for example, have access to the file system outside of the constrains imposed by -dSAFER. Ghostscrip...

Access Restriction Bypass

The Ghostscript is vulnerable to access restriction bypass.Attacker can use malicious PostScript to trigger the attack since forceput in DefineResource is still accessible...

Access Restriction Bypass

The Ghostscript is vulnerable to access restriction bypass.Attacker can use malicious PostScript to trigger the attack since superexec operator is available...

Authorization Bypass

Artifex Ghostscript is vulnerable to authorization bypass attacks. This exists in the psi/zdevice2.c file. which allows remote attackers to bypass intended access restrictions because available stack space is not checked when the device remains the same...

Remote Code Execution (RCE)

Artifex Ghostscript is vulnerable to remote code execution RCE vulnerability. This is because the ghostscript could leak sensitive operators on the operand stack when a pseudo-operator pushes a subroutine. A specially crafted PostScript file could use this flaw to escape the -dSAFER protection in...

Authorization Bypass

Artifex Ghostscript is vulnerable to authorization bypass. This exists in the psi/zfjbig2.c file which allows remote attackers to bypass intended access restrictions because of a JBIG2Decode type confusion...

Denial Of Service (DoS)

ghostscript PDF14 compositor is vulnerable to denial of serviceDoS attacks. This is because it does not properly handle the copying of a device. An attacker could possibly exploit this to bypass the -dSAFER protection and crash ghostscript or possibly execute arbitrary code in the ghostscript...

Authorization Bypass

ghostscript is vulnerable to authorization bypass. An attacker is able to access privileged operators using a malicious PostScript file to gain access to the file system outside of the contraints imposed by the -dSAFER option. This vulnerability exists after applying the fix for CVE-2019-6116...

Denial Of Service

Artifex Ghostscript is vulnerable to denial of serviceDoS attacks. This is because the ghostscript does not properly handle certain stack overflow error conditions. An attacker could possibly exploit this to bypass the -dSAFER protection and crash ghostscript or possibly execute arbitrary code in...

Remote Code Execution (RCE)

Artifex Ghostscript is vulnerable to remote code execution RCE attacks. This is because the type of the LockDistillerParams parameter is not properly verified. An attacker could possibly exploit this to bypass the -dSAFER protection and crash ghostscript or possibly execute arbitrary code in the...

Denial Of Service (DoS)

Artifex Ghostscript is vulnerable to denial of serviceDoS attacks. This is because the setpattern operator does not properly validate certain types. A specially crafted PostScript document could exploit this to crash Ghostscript or possibly execute arbitrary code in the context of the Ghostscript...

Authorization Bypass

Artifex Ghostscript is vulnerable to authorization bypass vulnerability. This is because the LockSafetyParams is not checked correctly if another device is used. An attacker could use this flaw to bypass certain security restrictions and perform unauthorized actions...

Arbitrary Code Execution

Artifex Ghostscript is vulnerable to arbitrary code execution. This is because incorrect restoration of privilege checking when running out of stack during exception handling. An attacker could use this flaw to supply crafted PostScript to execute code using the pipe instruction...

Sandbox Restrictions Bypass

Artifex Ghostscript is vulnerable to sandbox restrictions bypass attacks. This allows attackers to bypass a sandbox protection mechanism via vectors involving the 1Policy operator which may lead to perform unauthorized actions...

Arbitrary Code Execution

Artifex Ghostscript is vulnerable to arbitrary code execution. This is because artifex ghoscript allows an user-writable error exception table. An attacker could use this flaw to supply crafted PostScript to potentially overwrite or replace error handlers to inject code...