3 matches found
SUSE CVE-2009-4270
Stack-based buffer overflow in the errprintf function in base/gsmisc.c in ghostscript 8.64 through 8.70 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted PDF file, as originally reported for debug logging code in gdevcups.c in the CUPS...
Ghostscript errprintf()函数PDF文件处理栈溢出漏洞
BUGTRAQ ID: 37410 CVE ID: CVE-2009-4270 Ghostscript是用于显示PostScript文件或向非PostScript打印机打印这些文件的程序。 Ghostscript的base/gsmisc.c文件中的errprintf函数在通过CUPS打印特制的PDF文件时存在栈溢出漏洞,如果特制的PDF能够导致打印失败,则gs cups驱动的某些调试输出就可以在gs调试处理中触发这个溢出,导致执行任意代码。 Ghostscript Ghostscript 8.70 Ghostscript Ghostscript 8.64 厂商补丁: Ghostscrip...
DEBIAN-CVE-2009-4270
Stack-based buffer overflow in the errprintf function in base/gsmisc.c in ghostscript 8.64 through 8.70 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted PDF file, as originally reported for debug logging code in gdevcups.c in the CUPS...