ghostscript is vulnerable to privilege escalation. The vulnerability exists due to improperly secured privileged calls of .buildfont1. An attacker could access the files outside the restricted areas by creating a specially crafted PostScript file that could escalate privileges.