Arbitrary Code Execution

2020-04-1001:09:17

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

JSON

ghostscript is vulnerable to arbitrary code execution. The vulnerability exists as it was found that Ghostscript always tried to read Ghostscript system initialization files from the current working directory before checking other directories, even if a search path that did not contain the current working directory was specified with the “-I” option, or the “-P-” option was used (to prevent the current working directory being searched first). If a user ran Ghostscript in an attacker-controlled directory containing a system initialization file, it could cause Ghostscript to execute arbitrary PostScript code.

CPENameOperatorVersion
ghostscripteq8.15.2__9.1.el5
ghostscripteq8.15.2__9.11.el5
ghostscripteq8.15.2__9.4.el5
ghostscripteq8.15.2__9.4.el5_3.4
ghostscripteq8.15.2__9.12.el5_5
ghostscripteq8.15.2__9.3.el5
ghostscripteq8.70__6.el6
ghostscripteq8.15.2__9.1.el5_1.1
ghostscripteq8.15.2__9.4.el5_3.7
ghostscripteq8.15.2__9.1.el5

Name	Operator	Version
ghostscript	eq	8.15.2__9.1.el5
ghostscript	eq	8.15.2__9.11.el5
ghostscript	eq	8.15.2__9.4.el5
ghostscript	eq	8.15.2__9.4.el5_3.4
ghostscript	eq	8.15.2__9.12.el5_5
ghostscript	eq	8.15.2__9.3.el5
ghostscript	eq	8.70__6.el6
ghostscript	eq	8.15.2__9.1.el5_1.1
ghostscript	eq	8.15.2__9.4.el5_3.7
ghostscript	eq	8.15.2__9.1.el5