Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Heap-based buffer overflow in gdevwpr2.c in Ghostscript 9.04, when processing the OutputFile device parameter, allows user-assisted remote attackers to execute arbitrary code via a long file name in a PostScript document. NOTE: as of 20120314, the developer was not able to reproduce the issue and disputed it
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Ghostscript ‘OutputFile’ 参数缓冲区溢出漏洞
Vulnerability Description
Artifex Software Ghostscript是美国Artifex Software公司的一款开源的PostScript(一种用于电子产业和桌面出版领域的页面描述语言和编程语言)解析器,它可显示Postscript文件以及在非Postscript打印机上打印Postscript文件。 Ghostscript中存在远程基于堆的缓冲区溢出漏洞,该漏洞源于对用户提供的输入在复制到一个大小空间不足的缓冲区之前未经正确的边界检查。攻击者可利用该漏洞在应用程序上下文中执行任意代码,攻击失败将导致拒绝服务。G
CVSS Information
N/A
Vulnerability Type
N/A