CVE-2012-4875

Опубликовано: 06 сент. 2012

Источник: nvd

CVSS2: 9.3

EPSS Низкий

Описание

Heap-based buffer overflow in gdevwpr2.c in Ghostscript 9.04, when processing the OutputFile device parameter, allows user-assisted remote attackers to execute arbitrary code via a long file name in a PostScript document. NOTE: as of 20120314, the developer was not able to reproduce the issue and disputed it

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:artifex:gpl_ghostscript:9.04:*:*:*:*:*:*:*

EPSS

Процентиль: 93%

0.09321

Низкий

9.3 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

CVE-2012-4875

debian

больше 13 лет назад

Heap-based buffer overflow in gdevwpr2.c in Ghostscript 9.04, when pro ...

GHSA-q65g-wrcw-38g4

github

больше 3 лет назад

** DISPUTED ** Heap-based buffer overflow in gdevwpr2.c in Ghostscript 9.04, when processing the OutputFile device parameter, allows user-assisted remote attackers to execute arbitrary code via a long file name in a PostScript document. NOTE: as of 20120314, the developer was not able to reproduce the issue and disputed it.