[Forgot Password]
Login  Register Subscribe

24547

 
 

132176

 
 

122862

 
 

909

 
 

101125

 
 

148

Paid content will be excluded from the download.


Download | Alert*
OVAL

Use-after-free vulnerability in Artifex Ghostscript - CVE-2018-16540

ID: oval:org.secpod.oval:def:47397Date: (C)2018-09-10   (M)2018-10-25
Class: VULNERABILITYFamily: windows




The host is installed with Artifex Ghostscript before 9.24 and is prone to a use-after-free vulnerability. A flaw is present in the application, which fails to properly handle the builtin PDF14 converter. Successful exploitation could allow attackers to supply crafted postScript files to crash the interpreter or potentially execute code.

Platform:
Microsoft Windows 10
Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows 8.1
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows Vista
Microsoft Windows XP
Microsoft Windows Server 2016
Product:
Ghostscript
Reference:
CVE-2018-16540
CVE    1
CVE-2018-16540
CPE    11
cpe:/a:ghostscript:ghostscript:::x64
cpe:/a:ghostscript:ghostscript:::x86
cpe:/a:artifex:ghostscript:8_64
cpe:/o:redhat:enterprise_linux_server:7.0
...

© SecPod Technologies