Adobe Illustrator CS4 14.0.0 - Encapsulated Postscript (.eps) Buffer Overflow Exploit

No description provided by source. ?php / Adobe Illustrator CS4 V14.0.0 Encapsulated Postscript .eps overlong DSC Comment Buffer Overflow Exploit by Nine:Situations:Group::pyrokinesis site: http://retrogod.altervista.org/ An overlong string as DSC comment more than 42000 bytes results in a direct...

GV PostScript Viewer - Remote Buffer overflow Exploit (2)

No description provided by source. / there are at least 4 other stack buffer overflows, and 2 heap overflows. the first exploit i wrote exploited the one in the GLSA, and this one exploits that hole and four other ones as well. all of these are in the psscan function located in the ps.c file: 'gr...

BSD lpr 0.54 -4 Arbitrary Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1834/info lpr is a set of printing tools for unix systems. The lpr package that ships with RedHat Linux 6.2 and possibly earlier versions contains a vulnerability that will allow an attacker to execute arbitrary commands...

Windows OpenType Font - File Format DoS Exploit

No description provided by source. OpenType font file format remote client-side DoS exploit for Windows By Oleksiuk Dmytro aka Cr4sh http://twitter.com/dolex http://blog.cr4.sh mailto:[email protected] INFO: Zero day vulnerability exists in kernel-mode library ATMFD.DLL, that using by OS for worki...

Adobe Illustrator CS4 14.0.0 - eps Universal Buffer Overflow (meta)

No description provided by source. require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = GoodRanking include Msf::Exploit::FILEFORMAT def initializeinfo = superupdateinfoinfo, 'Name' = 'Adobe Illustrator CS4 v14.0.0', 'Description' = %q Adobe Illustrator CS4 V14.0.0 Encapsulated...

Adobe Illustrator CS4 14.0.0 - Postscript (.eps) Buffer Overflow

No description provided by source. $Id: adobeillustratorv14eps.rb 10477 2010-09-25 11:59:02Z mc $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and term...

GV 2.x/3.x Malformed PDF/PS File Buffer Overflow Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/5808/info gv is a freely available, open source Portable Document Format PDF and PostScript PS viewing utility. It is available for Unix and Linux operating systems. It has been reported that an insecure sscanf function...

openSUSE Security Update : ghostscript (openSUSE-SU-2012:1289-1)

The following security issue was fixed in ghostscript : Multiple integer underflows in the icmLutallocate function in International Color Consortium ICC Format library icclib, as used in Ghostscript 9.06 and Argyll Color Management System, allow remote attackers to cause a denial of service crash...

openSUSE Security Update : ghostscript-library (openSUSE-SU-2012:1290-1)

The following security issue was fixed in ghostscript : Multiple integer underflows in the icmLutallocate function in International Color Consortium ICC Format library icclib, as used in Ghostscript 9.06 and Argyll Color Management System, allow remote attackers to cause a denial of service crash...

openSUSE Security Update : a2ps (openSUSE-SU-2014:0499-1)

a2ps was updated to fix a security issue : fixps called ghostscript without -dSAFER, enabling postscript files processed by fixps to execute code on the system. CVE-2014-0466 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

Fedora Update for a2ps FEDORA-2014-4676

Check for the Version of a2ps OpenVAS Vulnerability Test Fedora Update for a2ps FEDORA-2014-4676 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

Fedora Update for a2ps FEDORA-2014-4691

Check for the Version of a2ps OpenVAS Vulnerability Test Fedora Update for a2ps FEDORA-2014-4691 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

[SECURITY] Fedora 19 Update: a2ps-4.14-23.fc19

The a2ps filter converts text and other types of files to PostScript. A2ps has pretty-printing capabilities and includes support for a wide number of programming languages, encodings ISO Latins, Cyrillic, etc., and medias...

[SECURITY] Fedora 20 Update: a2ps-4.14-23.fc20

The a2ps filter converts text and other types of files to PostScript. A2ps has pretty-printing capabilities and includes support for a wide number of programming languages, encodings ISO Latins, Cyrillic, etc., and medias...

GNU a2ps任意命令执行漏洞

Bugtraq ID:66660 CVE ID:CVE-2014-0466 GNU a2ps是将文件转换为PostScript的过滤器。 a2ps 4.14内的fixps脚本在执行gs时，没有使用-dSAFER选项，这可使上下文独立的攻击者通过特制的PostScript文件，利用此漏洞执行任意命令。 0 GNU a2ps 4.14 目前厂商已经发布了升级补丁以修复漏洞，请下载使用： http://www.gnu.org/software/a2ps/...

a2ps code execution

Macro are not filtered in Postscript processin...

[SECURITY] [DSA 2892-1] a2ps security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2892-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso March 31, 2014 http://www.debian.org/security/faq -...

CVE-2001-1593

Jakub Wilk found that a2ps, a tool to convert text and other types of files to PostScript, insecurely used a temporary file in spyuser. A local attacker could use this flaw to perform a symbolic link attack to modify an arbitrary file accessible to the user running a2ps...

Updated a2ps packages fix CVE-2014-0466

Updated a2ps packages fix security vulnerability: Brian M. Carlson reported that a2ps's fixps script does not invoke gs with the -dSAFER option. Consequently executing fixps on a malicious PostScript file could result in files being deleted or arbitrary commands being executed with the privileges...

DEBIAN-CVE-2014-0466

The fixps script in a2ps 4.14 does not use the -dSAFER option when executing gs, which allows context-dependent attackers to delete arbitrary files or execute arbitrary commands via a crafted PostScript file...