Download
| Alert*
|
CVE-2010-2056
GNU gv before 3.7.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file. CVE-2010-2055 Ghostscript 8.71 and earlier reads initialization files from the current working directory, which allows local users to execute arbitrary PostScript commands via a Trojan horse file, related to improper support for the -P- option to the gs program, as demonstrated using gs_init.ps, a different vulne ... |
