| Max CVSS | 9.3 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2009-3743 | 9.3 |
Off-by-one error in the Ins_MINDEX function in the TrueType bytecode interpreter in Ghostscript before 8.71 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a malformed TrueType font in a doc
|
10-10-2018 - 19:47 | 26-08-2010 - 21:00 | |
| CVE-2010-4054 | 4.3 |
The gs_type2_interpret function in Ghostscript allows remote attackers to cause a denial of service (incorrect pointer dereference and application crash) via crafted font data in a compressed data stream, aka bug 691043.
|
09-01-2015 - 23:44 | 23-10-2010 - 20:39 | |
| CVE-2010-2055 | 7.2 |
Ghostscript 8.71 and earlier reads initialization files from the current working directory, which allows local users to execute arbitrary PostScript commands via a Trojan horse file, related to improper support for the -P- option to the gs program, a
|
09-01-2015 - 23:44 | 22-07-2010 - 05:43 | |
| CVE-2010-4820 | 4.4 |
Untrusted search path vulnerability in Ghostscript 8.62 allows local users to execute arbitrary PostScript code via a Trojan horse Postscript library file in Encoding/ under the current working directory, a different vulnerability than CVE-2010-2055.
|
02-11-2014 - 00:59 | 27-10-2014 - 01:55 |