5386 matches found
GLSA-200903-37 : Ghostscript: User-assisted execution of arbitrary code
The remote host is affected by the vulnerability described in GLSA-200903-37 Ghostscript: User-assisted execution of arbitrary code Jan Lieskovsky from the Red Hat Security Response Team discovered the following vulnerabilities in Ghostscript's ICC Library: Multiple integer overflows CVE-2009-058...
DEBIAN-CVE-2009-0583
Multiple integer overflows in icc.c in the International Color Consortium ICC Format library aka icclib, as used in Ghostscript 8.64 and earlier and Argyll Color Management System CMS 1.0.3 and earlier, allow context-dependent attackers to cause a denial of service heap-based buffer overflow and...
CVE-2009-0584
icc.c in the International Color Consortium ICC Format library aka icclib, as used in Ghostscript 8.64 and earlier and Argyll Color Management System CMS 1.0.3 and earlier, allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code by usin...
CVE-2009-0583
Multiple integer overflows in icc.c in the International Color Consortium ICC Format library aka icclib, as used in Ghostscript 8.64 and earlier and Argyll Color Management System CMS 1.0.3 and earlier, allow context-dependent attackers to cause a denial of service heap-based buffer overflow and...
CVE-2009-0584
icc.c in the International Color Consortium ICC Format library aka icclib, as used in Ghostscript 8.64 and earlier and Argyll Color Management System CMS 1.0.3 and earlier, allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code by usin...
CVE-2009-0583
Multiple integer overflows in icc.c in the International Color Consortium ICC Format library aka icclib, as used in Ghostscript 8.64 and earlier and Argyll Color Management System CMS 1.0.3 and earlier, allow context-dependent attackers to cause a denial of service heap-based buffer overflow and...
Input validation
icc.c in the International Color Consortium ICC Format library aka icclib, as used in Ghostscript 8.64 and earlier and Argyll Color Management System CMS 1.0.3 and earlier, allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code by usin...
CVE-2009-0583
Multiple integer overflows in icc.c in the International Color Consortium ICC Format library aka icclib, as used in Ghostscript 8.64 and earlier and Argyll Color Management System CMS 1.0.3 and earlier, allow context-dependent attackers to cause a denial of service heap-based buffer overflow and...
CVE-2009-0584
icc.c in the International Color Consortium ICC Format library aka icclib, as used in Ghostscript 8.64 and earlier and Argyll Color Management System CMS 1.0.3 and earlier, allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code by usin...
CVE-2009-0583
CVE-2009-0583 is a vulnerability in Ghostscript’s ICC library (icclib) affecting Ghostscript 8.64 and earlier (and Argyll CMS 1.0.3 and earlier). The issue is multiple integer overflows in icc.c that enable a context-dependent attacker to trigger a heap-based buffer overflow, crash the applicatio...
CVE-2009-0583
Multiple integer overflows in icc.c in the International Color Consortium ICC Format library aka icclib, as used in Ghostscript 8.64 and earlier and Argyll Color Management System CMS 1.0.3 and earlier, allow context-dependent attackers to cause a denial of service heap-based buffer overflow and...
CVE-2009-0583
Multiple integer overflows in icc.c in the International Color Consortium ICC Format library aka icclib, as used in Ghostscript 8.64 and earlier and Argyll Color Management System CMS 1.0.3 and earlier, allow context-dependent attackers to cause a denial of service heap-based buffer overflow and...
CVE-2009-0584
icc.c in the International Color Consortium ICC Format library aka icclib, as used in Ghostscript 8.64 and earlier and Argyll Color Management System CMS 1.0.3 and earlier, allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code by usin...
CVE-2009-0584
icc.c in the International Color Consortium ICC Format library aka icclib, as used in Ghostscript 8.64 and earlier and Argyll Color Management System CMS 1.0.3 and earlier, allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code by usin...
USN-743-1: Ghostscript vulnerabilities
It was discovered that Ghostscript contained multiple integer overflows in its ICC color management library. If a user or automated system were tricked into opening a crafted Postscript file, an attacker could cause a denial of service or execute arbitrary code with privileges of the user invokin...
Ubuntu Update for ghostscript, gs-gpl vulnerability USN-501-2
Ubuntu Update for Linux kernel vulnerabilities USN-501-2 OpenVAS Vulnerability Test $Id: gbubuntuUSN5012.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for ghostscript, gs-gpl vulnerability USN-501-2 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...
Ghostscript多个输入验证和整数溢出漏洞
BUGTRAQ ID: 34184 CVECAN ID: CVE-2009-0583,CVE-2009-0584 Ghostscript是用于显示PostScript文件或向非PostScript打印机打印这些文件的程序。 Ghostscript的国际色彩联盟格式库(icclib)中存在多个可导致堆溢出的整数溢出,以及多个不充分输入验证错误。攻击者可以使用特制的ICC配置文件创建嵌入了图形的恶意PostScript或PDF文件,如果受害用户打开了该文件就会导致Ghostscript崩溃或执行任意代码。 Ghostscript Ghostscript 8.x Ghostscript...
Ghostscript: User-assisted execution of arbitrary code
Background Ghostscript is an interpreter for the PostScript language and the Portable Document Format PDF. Description Jan Lieskovsky from the Red Hat Security Response Team discovered the following vulnerabilities in Ghostscript's ICC Library: Multiple integer overflows CVE-2009-0583. Multiple...
Ubuntu: Security Advisory (USN-599-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu: Security Advisory (USN-501-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...