[Forgot Password]
Login  Register Subscribe

24437

 
 

132035

 
 

119400

 
 

909

 
 

96836

 
 

145

Paid content will be excluded from the download.


Download | Alert*
OVAL

Use-after-free vulnerability in Artifex Ghostscript - CVE-2018-16540

ID: oval:org.secpod.oval:def:47397Date: (C)2018-09-10   (M)2018-10-25
Class: VULNERABILITYFamily: windows




The host is installed with Artifex Ghostscript before 9.24 and is prone to a use-after-free vulnerability. A flaw is present in the application, which fails to properly handle the builtin PDF14 converter. Successful exploitation could allow attackers to supply crafted postScript files to crash the interpreter or potentially execute code.

Platform:
Microsoft Windows 10
Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows 8.1
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows Vista
Microsoft Windows XP
Microsoft Windows Server 2016
Product:
Ghostscript
Reference:
CVE-2018-16540
CVE    1
CVE-2018-16540
CPE    11
cpe:/a:ghostscript:ghostscript:::x64
cpe:/a:ghostscript:ghostscript:::x86
cpe:/a:artifex:ghostscript:8_64
cpe:/o:debian:debian_linux:8.0
...

© SecPod Technologies