4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
ghostscript is vulnerable to Denial of Service (DoS). The vulnerability exists as the flaw was found in the way Ghostscript interpreted PostScript Type 1 and PostScript Type 2 font files. An attacker could create a specially-crafted PostScript Type 1 or PostScript Type 2 font file that, when interpreted, could cause Ghostscript to crash.
ghostscript.com/pipermail/gs-cvs/2010-January/010333.html
rhn.redhat.com/errata/RHSA-2012-0096.html
security.gentoo.org/glsa/glsa-201412-17.xml
www.kb.cert.org/vuls/id/538191
access.redhat.com/errata/RHSA-2012:0095
access.redhat.com/security/updates/classification/#moderate
rhn.redhat.com/errata/RHSA-2012-0095.html