SUSE CVE-2008-0411

Stack-based buffer overflow in the zseticcspace function in zicc.c in Ghostscript 8.61 and earlier allows remote attackers to execute arbitrary code via a postscript .ps file containing a long Range array in a .seticcspace operator...

ghostscript-poc.txt

/ A proof of concept exploit for ghostscript 8.61 and earlier. Vulnerability discovered by Chris Evans Author: [email protected] Will Drewry Affects: All versions of ghostscript that support .seticcspace. Tested on: Ubuntu gs-esp-8.15.2.dfsg.0ubuntu1-0ubuntu1 x86 Ghostscript 8.61 2007-11-21 x86...

DEBIAN-CVE-2008-0411

Stack-based buffer overflow in the zseticcspace function in zicc.c in Ghostscript 8.61 and earlier allows remote attackers to execute arbitrary code via a postscript .ps file containing a long Range array in a .seticcspace operator...

ghostscript: stack-based buffer overflow in .seticcspace operator

Stack-based buffer overflow in the zseticcspace function in zicc.c in Ghostscript 8.61 and earlier allows remote attackers to execute arbitrary code via a postscript .ps file containing a long Range array in a .seticcspace operator...

PT-2008-2043 · Artifex +1 · Ghostscript +1

Name of the Vulnerable Software and Affected Versions: Ghostscript versions 8.61 and earlier Description: The issue allows remote attackers to execute arbitrary code via a postscript .ps file containing a long Range array in a .seticcspace operator. This is due to a stack-based buffer overflow in...