CVE-2012-4875 Information

Feb 14, 2021 cve

Description

LICENSE README.md cvefilelist cvelist nvdcve nvdpages.sh scripts test-CVE-2017-1882.markdown test-CVE-2017-18822.markdown tmpvendorlinks DISPUTED LICENSE README.md cvefilelist cvelist nvdcve nvdpages.sh scripts test-CVE-2017-1882.markdown test-CVE-2017-18822.markdown tmpvendorlinks Heap-based buffer overflow in gdevwpr2.c in Ghostscript 9.04 when processing the OutputFile device parameter allows user-assisted remote attackers to execute arbitrary code via a long file name in a PostScript document. NOTE: as of 20120314 the developer was not able to reproduce the issue and disputed it.

Reference

http://bugs.ghostscript.com/show_bug.cgi?id=692856 http://secunia.com/advisories/47855 http://www.securityfocus.com/bid/52864 https://exchange.xforce.ibmcloud.com/vulnerabilities/74554

Share on: