ghostscript: Safer mode bypass by .forceput exposure in .pdf_hook_DSC_Creator (701445)
A flaw was found in the .pdfhookDSCCreator procedure where it did not properly secure its privileged calls, enabling scripts to bypass -dSAFER restrictions. A specially crafted PostScript file could disable security protection and then have access to the file system, or execute arbitrary commands...