CVE-2018-16802: CVE-2018-16802

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2018-16802

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

An issue was discovered in Artifex Ghostscript before 9.25. Incorrect "restoration of privilege" checking when running out of stack during exception handling could be used by attackers able to supply crafted PostScript to execute code using the "pipe" instruction. This is due to an incomplete fix for CVE-2018-16509.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Artifex Ghostscript 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Artifex Ghostscript是美国Artifex Software公司的一款开源的PostScript（一种用于电子产业和桌面出版领域的页面描述语言和编程语言）解析器，它可显示Postscript文件以及在非Postscript打印机上打印Postscript文件。 Artifex Ghostscript 9.25之前版本中的异常处理过程存在安全漏洞。攻击者可通过提交特制的PostScript利用该漏洞使用‘pipe’指令执行代码。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2018-16802

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2018-16802

Please Login to view more intelligence information

https://git.ghostscript.com/?p=ghostpdl.git%3Ba=commitdiff%3Bh=5812b1b78fc4d36fdc293b7859de69241140d590x_refsource_CONFIRM
http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=643b24dbd002fb9c131313253c307cf3951b3d47x_refsource_MISC
https://seclists.org/oss-sec/2018/q3/229x_refsource_MISC
http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=3e5d316b72e3965b7968bb1d96baa137cd063ac6x_refsource_MISC
https://www.debian.org/security/2018/dsa-4294vendor-advisoryx_refsource_DEBIAN
https://usn.ubuntu.com/3768-1/vendor-advisoryx_refsource_UBUNTU
https://security.gentoo.org/glsa/201811-12vendor-advisoryx_refsource_GENTOO
https://access.redhat.com/errata/RHSA-2018:3834vendor-advisoryx_refsource_REDHAT
https://seclists.org/oss-sec/2018/q3/228mailing-listx_refsource_MLIST
https://lists.debian.org/debian-lts-announce/2018/09/msg00015.htmlmailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2018-16802

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2018-16802

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2018-16802

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2018-16802

III. Intelligence Information for CVE-2018-16802

IV. Related Vulnerabilities

V. Comments for CVE-2018-16802

Leave a comment