| Max CVSS | 6.8 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-8291 | 6.8 |
Artifex Ghostscript through 2017-04-26 allows -dSAFER bypass and remote command execution via .rsdparams type confusion with a "/OutputFile (%pipe%" substring in a crafted .eps document that is an input to the gs program, as exploited in the wild in
|
02-07-2024 - 13:01 | 27-04-2017 - 01:59 | |
| CVE-2017-7207 | 4.3 |
The mem_get_bits_rectangle function in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted PostScript document.
|
05-01-2018 - 02:31 | 21-03-2017 - 06:59 | |
| CVE-2017-5951 | 4.3 |
The mem_get_bits_rectangle function in base/gdevmem.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file.
|
04-11-2017 - 01:29 | 03-04-2017 - 05:59 | |
| CVE-2016-10220 | 4.3 |
The gs_makewordimagedevice function in base/gsdevmem.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file that is mishandled in the PDF T
|
04-11-2017 - 01:29 | 03-04-2017 - 05:59 | |
| CVE-2016-10219 | 4.3 |
The intersect function in base/gxfill.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted file.
|
04-11-2017 - 01:29 | 03-04-2017 - 05:59 |