CVE-2002-0363

ghostscript before 6.53 allows attackers to execute arbitrary commands by using .locksafe or .setsafe to reset the current pagedevice...

CVE-2002-0363

CVE-2002-0363 affects GNU Ghostscript prior to 6.53. A vulnerability in PostScript interpretation allows an attacker to cause Ghostscript to execute arbitrary commands by tricking the renderer into resetting the current pagedevice using .locksafe or .setsafe. The issue is due to insufficient vali...

ASA-0000: GV Execution of Arbitrary Shell Commands

"After" Security Advisory Title: GV Execution of Arbitrary Shell Commands Affects: gv-3.5.8 and probably older versions Advisory ID: ASA-0000 Release Date: 2002-10-01 Author: Marc Bevand bevandm at epita.fr URL: http://www.epita.fr/bevandm/asa/asa-0000 --oOo-- 0. Table of Contents 0. Table of...

Important: Red Hat Security Advisory: ghostscript security update

Updated packages are available for GNU Ghostscript, which fix a vulnerability found during PostScript interpretation. Ghostscript is a program for displaying PostScript files or printing them to non-PostScript printers. An untrusted PostScript file can cause ghostscript to execute arbitrary...

CVE-2001-1353

Vulnerability (CVE-2001-1353) affects Ghostscript up to version 6.50, where the file operator can be exploited by a local user to read and write arbitrary files as the lp user, even when running with -dSAFER . The root cause is that the file operator integrity check does not prevent untrusted fil...

CVE-2001-1353

ghostscript before 6.51 allows local users to read and write arbitrary files as the 'lp' user via the file operator, even with -dSAFER enabled...

Important: Red Hat Security Advisory: : Ghostscript command execution vulnerability

Updated packages are available for GNU Ghostscript which fix a vulnerability found during Postscript interpretation. Ghostscript is a program for displaying PostScript files or printing them to non-PostScript printers. An untrusted PostScript file can cause ghostscript to execute arbitrary comman...

CVE-2002-0363

ghostscript before 6.53 allows attackers to execute arbitrary commands by using .locksafe or .setsafe to reset the current pagedevice...

CVE-2001-1353

ghostscript before 6.51 allows local users to read and write arbitrary files as the 'lp' user via the file operator, even with -dSAFER enabled...

Aladdin Ghostscript creates insecure temporary files allowing a local user to create symbolic links to other files

Overview Alladin Ghostscript, a previewer for postscript files, creates temporary files with a predictable names. The creation allows attackers to use symbolic links to overwrite other files on the host. Description Alladin Ghostscript is a previewer for postscript files. It creates temporary fil...

Samsung ml85p Printer Driver 1.0 - Insecure Temporary File Creation (1)

// source: https://www.securityfocus.com/bid/3008/info ml85p is a Linux driver for Samsung ML-85G series printers. It may be bundled with distributions of Ghostscript. ml85p does not check for symbolic links when creating image output files. These files are created in /tmp with a guessable naming...

Samsung ml85p Printer Driver 1.0 - Insecure Temporary File Creation (3)

Samsung ml85p Printer Driver 1.0 - Insecure Temporary File Creation 3 source: https://www.securityfocus.com/bid/3008/info ml85p is a Linux driver for Samsung ML-85G series printers. It may be bundled with distributions of Ghostscript. ml85p does not check for symbolic links when creating image...

CVE-2000-1163

ghostscript before 5.10-16 uses an empty LDRUNPATH environmental variable to find libraries in the current directory, which could allow local users to execute commands as other users by placing a Trojan horse library into a directory from which another user executes ghostscript...

CVE-2000-1162

ghostscript before 5.10-16 allows local users to overwrite files of other users via a symlink attack...

CVE-2000-1163

CVE-2000-1163 affects Ghostscript prior to 5.10-16, which uses an insecure LD_RUN_PATH value to locate libraries in the current directory. This enables a local attacker to place a Trojan horse library in a directory from which another user runs Ghostscript, potentially executing code with the use...

CVE-2000-1162

Ghostscript before 5.10-16 is vulnerable to a local symlink attack that lets a local user overwrite files owned by others by creating predictable temporary files. The root cause involves using mktemp to create temporary files (as noted in vendor advisories), enabling file overwrites by users runn...

CVE-2000-1162

ghostscript before 5.10-16 allows local users to overwrite files of other users via a symlink attack...

CVE-2000-1163

ghostscript before 5.10-16 uses an empty LDRUNPATH environmental variable to find libraries in the current directory, which could allow local users to execute commands as other users by placing a Trojan horse library into a directory from which another user executes ghostscript...

[RHSA-2000:114-03] ghostscript uses mktemp instead of mkstemp, and uses an improper LD_RUN_PATH

--------------------------------------------------------------------- Red Hat, Inc. Security Advisory Synopsis: ghostscript uses mktemp instead of mkstemp, and uses an improper LDRUNPATH Advisory ID: RHSA-2000:114-03 Issue date: 2000-11-22 Updated on: 2000-11-22 Product: Red Hat Linux Keywords:...

Дырки в Ghostscript

Уязвимость символьных линков при создании временных файлов, кроме того при поиске динамических библиотек используется локальная папка...