[CVE-2017-8291] Artifex Ghostscript Type Confusion Vulnerability

NVD 상세 정보

설명: Artifex Ghostscript through 2017-04-26 allows -dSAFER bypass and remote command execution via .rsdparams type confusion with a "/OutputFile (%pipe%" substring in a crafted .eps document that is an input to the gs program, as exploited in the wild in April 2017.

CWE: CWE-843 | CWE-843

참조

• http://openwall.com/lists/oss-security/2017/04/28/2 [Mailing List, Patch, Third Party Advisory]
• http://www.debian.org/security/2017/dsa-3838 [Mailing List, Third Party Advisory]
• http://www.securityfocus.com/bid/98476 [Broken Link, Third Party Advisory, VDB Entry]
• https://access.redhat.com/errata/RHSA-2017:1230 [Third Party Advisory]
• https://bugs.ghostscript.com/show_bug.cgi?id=697808 [Issue Tracking, Third Party Advisory, VDB Entry]
• https://bugzilla.redhat.com/show_bug.cgi?id=1446063 [Issue Tracking, Patch, Third Party Advisory, VDB Entry]
• https://bugzilla.suse.com/show_bug.cgi?id=1036453 [Exploit, Issue Tracking, Third Party Advisory, VDB Entry]
• https://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=04b37bbce174eed24edec7ad5b920eb93db4d47d [Broken Link]
• https://security.gentoo.org/glsa/201708-06 [Third Party Advisory]
• https://www.exploit-db.com/exploits/41955/ [Exploit, Third Party Advisory, VDB Entry]
• http://openwall.com/lists/oss-security/2017/04/28/2 [Mailing List, Patch, Third Party Advisory]
• http://www.debian.org/security/2017/dsa-3838 [Mailing List, Third Party Advisory]
• http://www.securityfocus.com/bid/98476 [Broken Link, Third Party Advisory, VDB Entry]
• https://access.redhat.com/errata/RHSA-2017:1230 [Third Party Advisory]
• https://bugs.ghostscript.com/show_bug.cgi?id=697808 [Issue Tracking, Third Party Advisory, VDB Entry]
• ... 외 6건