CVE-2004-0967

Ghostscript (espgs) in Trustix Secure Linux 1.5–2.1 and other OSes is affected by CVE-2004-0967 due to insecure temporary file handling in the scripts pj-gs.sh, ps2epsi, pv.sh, and sysvlp.sh. The vulnerability allows local attackers to overwrite files via a symlink attack on temporary files creat...

CVE-1999-0155

The CVE concerns Ghostscript where the command-line option -dSAFER does not sufficiently constrain the sandbox, allowing a remote attacker to execute commands. The available connected documents identify the affected software as Ghostscript and the vulnerability type as remote command execution tr...

CVE-2000-1163

CVE-2000-1163 affects Ghostscript prior to 5.10-16, which uses an insecure LD_RUN_PATH value to locate libraries in the current directory. This enables a local attacker to place a Trojan horse library in a directory from which another user runs Ghostscript, potentially executing code with the use...

CVE-2001-1353

Vulnerability (CVE-2001-1353) affects Ghostscript up to version 6.50, where the file operator can be exploited by a local user to read and write arbitrary files as the lp user, even when running with -dSAFER . The root cause is that the file operator integrity check does not prevent untrusted fil...

CVE-2000-1162

Ghostscript before 5.10-16 is vulnerable to a local symlink attack that lets a local user overwrite files owned by others by creating predictable temporary files. The root cause involves using mktemp to create temporary files (as noted in vendor advisories), enabling file overwrites by users runn...

CVE-2002-0363

CVE-2002-0363 affects GNU Ghostscript prior to 6.53. A vulnerability in PostScript interpretation allows an attacker to cause Ghostscript to execute arbitrary commands by tricking the renderer into resetting the current pagedevice using .locksafe or .setsafe. The issue is due to insufficient vali...