Denial Of Service (DoS)

2020-04-1001:09:17

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

JSON

ghostscript is vulnerable to Denial of Service (DoS). The vulnerability exists as the flaw was found in the way Ghostscript interpreted PostScript Type 1 and PostScript Type 2 font files. An attacker could create a specially-crafted PostScript Type 1 or PostScript Type 2 font file that, when interpreted, could cause Ghostscript to crash.

CPENameOperatorVersion
ghostscripteq8.15.2__9.1.el5
ghostscripteq8.15.2__9.11.el5
ghostscripteq8.15.2__9.4.el5
ghostscripteq8.15.2__9.4.el5_3.4
ghostscripteq8.15.2__9.12.el5_5
ghostscripteq7.07__33.2.el4_7.5
ghostscripteq7.07__33.2.el4_6.1
ghostscripteq8.15.2__9.3.el5
ghostscripteq8.70__6.el6
ghostscripteq7.07__33.2.el4_7.8

Name	Operator	Version
ghostscript	eq	8.15.2__9.1.el5
ghostscript	eq	8.15.2__9.11.el5
ghostscript	eq	8.15.2__9.4.el5
ghostscript	eq	8.15.2__9.4.el5_3.4
ghostscript	eq	8.15.2__9.12.el5_5
ghostscript	eq	7.07__33.2.el4_7.5
ghostscript	eq	7.07__33.2.el4_6.1
ghostscript	eq	8.15.2__9.3.el5
ghostscript	eq	8.70__6.el6
ghostscript	eq	7.07__33.2.el4_7.8