enscript: "epsf" special escape buffer overflows

Multiple buffer overflows in the 1 recognizeepsfile function src/psgen.c and 2 tildesubst function src/util.c in GNU enscript 1.6.1, and possibly earlier, might allow remote attackers to execute arbitrary code via an epsf escape sequence with a long filename...

CUPS PNG过滤器_cupsImageReadPNG()函数整数溢出漏洞

BUGTRAQ ID: 32518 Common Unix Printing System（CUPS）是一款通用Unix打印系统，是Unix环境下的跨平台打印解决方案，基于Internet打印协议，提供大多数PostScript和raster打印机服务。 CUPS PNG过滤器的cupsImageReadPNG函数中执行了以下计算： bufsize = img-xsize img-ysize 3; if bufsize / img-ysize 3 != img-xsize fprintfstderr, "DEBUG: PNG image dimensions %ux%u too...

[SECURITY] Fedora 9 Update: enscript-1.6.4-10.fc9

GNU enscript is a free replacement for Adobe's Enscript program. Enscript converts ASCII files to PostScriptTM and spools generated PostScript output to the specified printer or saves it to a file. Enscript can be extended to handle different output media and includes many options for customizing...

[SECURITY] Fedora 8 Update: enscript-1.6.4-9.fc8

GNU enscript is a free replacement for Adobe's Enscript program. Enscript converts ASCII files to PostScriptTM and spools generated PostScript output to the specified printer or saves it to a file. Enscript can be extended to handle different output media and includes many options for customizing...

Debian Security Advisory DSA 1656-1 (cupsys)

The remote host is missing an update to cupsys announced via advisory DSA 1656-1. OpenVAS Vulnerability Test $Id: deb16561.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1656-1 cupsys Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

GNU Enscript src/psgen.c栈溢出漏洞

BUGTRAQ ID: 31858 CVECAN ID: CVE-2008-3863 GNU enscript是用于替换Adobe enscript程序的脚本。Enscript可将ASCII文件转换为PostScript并将生成的PostScript输出提供给指定的打印机。 GNU enscript src/psgen.c文件中的readspecialescape函数存在栈溢出漏洞。如果用户通过-e选项启用了特殊转义处理的话，在转换恶意文件时就可能触发这个溢出，导致执行任意指令。 GNU Enscript 1.6.4 beta GNU Enscript 1.6.1 GNU ---...

Debian DSA-1656-1 : cupsys - several vulnerabilities

Several local vulnerabilities have been discovered in the Common UNIX Printing System. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-3639 It was discovered that insufficient bounds checking in the SGI image filter may lead to the execution of...

CVE-2008-3640

Integer overflow in the WriteProlog function in texttops in CUPS before 1.3.9 allows remote attackers to execute arbitrary code via a crafted PostScript file that triggers a heap-based buffer overflow...

CVE-2008-3640

Integer overflow in the WriteProlog function in texttops in CUPS before 1.3.9 allows remote attackers to execute arbitrary code via a crafted PostScript file that triggers a heap-based buffer overflow...

DEBIAN-CVE-2008-3640

Integer overflow in the WriteProlog function in texttops in CUPS before 1.3.9 allows remote attackers to execute arbitrary code via a crafted PostScript file that triggers a heap-based buffer overflow...

CVE-2008-3640

Integer overflow in the WriteProlog function in texttops in CUPS before 1.3.9 allows remote attackers to execute arbitrary code via a crafted PostScript file that triggers a heap-based buffer overflow...

Integer overflow

Integer overflow in the WriteProlog function in texttops in CUPS before 1.3.9 allows remote attackers to execute arbitrary code via a crafted PostScript file that triggers a heap-based buffer overflow...

CVE-2008-3640

Integer overflow in the WriteProlog function in texttops in CUPS before 1.3.9 allows remote attackers to execute arbitrary code via a crafted PostScript file that triggers a heap-based buffer overflow...

CVE-2008-3640

CVE-2008-3640 affects the Common UNIX Printing System (CUPS) in the texttops filter (WriteProlog). The vulnerability is a heap-based buffer overflow triggered by a crafted PostScript file, allowing remote code execution before CUPS 1.3.9. Connected advisories (e.g., MiracleLinux/Nessus entries) c...

ORACLE to build the data file WriteWebShell-vulnerability warning-the black bar safety net

In fact, similar to the ORACLE such a powerful database, really not necessary with this soil the way SQLJ stored procedure write file can also be forced to helpless the other machine does not support SQLJ and UTLFILE package is also to kill? That you can also use the following I said this way SQL...

CUPS < 1.3.9 Multiple Vulnerabilities

Binary data 4707.prm...

CVE-2008-3647

Buffer overflow in PSNormalizer in Mac OS X 10.4.11 and 10.5.5 allows remote attackers to cause a denial of service application termination and execute arbitrary code via a PostScript file with a crafted bounding box comment...

Buffer overflow

Buffer overflow in PSNormalizer in Mac OS X 10.4.11 and 10.5.5 allows remote attackers to cause a denial of service application termination and execute arbitrary code via a PostScript file with a crafted bounding box comment...

CVE-2008-3647

Buffer overflow in PSNormalizer in Mac OS X 10.4.11 and 10.5.5 allows remote attackers to cause a denial of service application termination and execute arbitrary code via a PostScript file with a crafted bounding box comment...

cups security update

CentOS Errata and Security Advisory CESA-2008:0937 Updated cups packages that fix multiple security issues are now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The Common UNIX Printing...