CVE-2018-16509 PoC — Artifex Ghostscript 安全漏洞

Source

https://github.com/cved-sources/cve-2018-16509

Associated Vulnerability

Title:Artifex Ghostscript 安全漏洞 (CVE-2018-16509)
Description:Artifex Ghostscript是美国Artifex Software公司的一款开源的PostScript（一种用于电子产业和桌面出版领域的页面描述语言和编程语言）解析器，它可显示Postscript文件以及在非Postscript打印机上打印Postscript文件。 Artifex Ghostscript 9.24之前版本中存在安全漏洞，该漏洞源于在处理/invalidaccess异常时，程序没有正确的检测‘restoration of privilege（权限恢复）’。攻击者可通过提交特制的P

Description

cve-2018-16509

Readme

# CVE-2018-16509

This is part of Cved: *a tool to manage vulnerable docker containers.*

Cved: https://github.com/git-rep-src/cved

Image source: https://github.com/cved-sources/cve-2018-16509

Image author: https://github.com/knqyf263/CVE-2018-16509

File Snapshot


 [4.0K]  /data/pocs/3681200f6766835f6d4efbf55e2bc862cca15e1d
├── [4.0K]  build
│   ├── [ 201]  index.html
│   └── [ 235]  resize.php
├── [ 602]  Dockerfile
└── [ 252]  README.md

1 directory, 4 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!