Artifex

Ghostscript

129 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2018-10194

  • EPSS 0.65%
  • Published 18.04.2018 21:29:00
  • Last modified 21.11.2024 03:40:59

The set_text_distance function in devices/vector/gdevpdts.c in the pdfwrite component in Artifex Ghostscript through 9.22 does not prevent overflows in text-positioning calculation, which allows remote attackers to cause a denial of service (applicat...

8.8

CVE-2016-7976

  • EPSS 74.92%
  • Published 07.08.2017 20:29:01
  • Last modified 20.04.2025 01:37:25

The PS Interpreter in Ghostscript 9.18 and 9.20 allows remote attackers to execute arbitrary code via crafted userparams.

7.8

CVE-2017-11714

  • EPSS 0.34%
  • Published 28.07.2017 05:29:00
  • Last modified 20.04.2025 01:37:25

psi/ztoken.c in Artifex Ghostscript 9.21 mishandles references to the scanner state structure, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted PostScript document,...

7.8

CVE-2017-9611

Exploit
  • EPSS 0.39%
  • Published 26.07.2017 19:29:00
  • Last modified 20.04.2025 01:37:25

The Ins_MIRP function in base/ttinterp.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted document.

7.8

CVE-2017-9835

Exploit
  • EPSS 0.35%
  • Published 26.07.2017 19:29:00
  • Last modified 20.04.2025 01:37:25

The gs_alloc_ref_array function in psi/ialloc.c in Artifex Ghostscript 9.21 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted PostScript doc...

5.5

CVE-2016-7977

  • EPSS 1.07%
  • Published 23.05.2017 04:29:01
  • Last modified 20.04.2025 01:37:25

Ghostscript before 9.21 might allow remote attackers to bypass the SAFER mode protection mechanism and consequently read arbitrary files via the use of the .libfile operator in a crafted postscript document.

9.8

CVE-2016-7978

  • EPSS 2.96%
  • Published 23.05.2017 04:29:01
  • Last modified 20.04.2025 01:37:25

Use-after-free vulnerability in Ghostscript 9.20 might allow remote attackers to execute arbitrary code via vectors related to a reference leak in .setdevice.

9.8

CVE-2016-7979

  • EPSS 1.61%
  • Published 23.05.2017 04:29:01
  • Last modified 20.04.2025 01:37:25

Ghostscript before 9.21 might allow remote attackers to bypass the SAFER mode protection mechanism and consequently execute arbitrary code by leveraging type confusion in .initialize_dsc_parser.

5.5

CVE-2017-8908

  • EPSS 0.39%
  • Published 12.05.2017 07:29:00
  • Last modified 20.04.2025 01:37:25

The mark_line_tr function in gxscanc.c in Artifex Ghostscript 9.21 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PostScript document.

7.8

CVE-2017-8291

Warning Exploit
  • EPSS 92.68%
  • Published 27.04.2017 01:59:02
  • Last modified 20.04.2025 01:37:25

Artifex Ghostscript through 2017-04-26 allows -dSAFER bypass and remote command execution via .rsdparams type confusion with a "/OutputFile (%pipe%" substring in a crafted .eps document that is an input to the gs program, as exploited in the wild in ...