CVE-2004-0967
- EPSS 0.03%
- Veröffentlicht 09.02.2005 05:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
The (1) pj-gs.sh, (2) ps2epsi, (3) pv.sh, and (4) sysvlp.sh scripts in the ESP Ghostscript (espgs) package in Trustix Secure Linux 1.5 through 2.1, and other operating systems, allow local users to overwrite files via a symlink attack on temporary fi...
CVE-2002-0363
- EPSS 0.71%
- Veröffentlicht 29.05.2002 04:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
ghostscript before 6.53 allows attackers to execute arbitrary commands by using .locksafe or .setsafe to reset the current pagedevice.
CVE-2001-1353
- EPSS 0.07%
- Veröffentlicht 18.09.2001 04:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
ghostscript before 6.51 allows local users to read and write arbitrary files as the 'lp' user via the file operator, even with -dSAFER enabled.
CVE-2000-1162
- EPSS 0.08%
- Veröffentlicht 09.01.2001 05:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
ghostscript before 5.10-16 allows local users to overwrite files of other users via a symlink attack.
CVE-2000-1163
- EPSS 0.09%
- Veröffentlicht 09.01.2001 05:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
ghostscript before 5.10-16 uses an empty LD_RUN_PATH environmental variable to find libraries in the current directory, which could allow local users to execute commands as other users by placing a Trojan horse library into a directory from which ano...
CVE-1999-0155
- EPSS 0.83%
- Veröffentlicht 31.08.1995 04:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
The ghostscript command with the -dSAFER option allows remote attackers to execute commands.