| Max CVSS | 6.8 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-8291 | 6.8 |
Artifex Ghostscript through 2017-04-26 allows -dSAFER bypass and remote command execution via .rsdparams type confusion with a "/OutputFile (%pipe%" substring in a crafted .eps document that is an input to the gs program, as exploited in the wild in
|
02-07-2024 - 13:01 | 27-04-2017 - 01:59 | |
| CVE-2017-7207 | 4.3 |
The mem_get_bits_rectangle function in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted PostScript document.
|
05-01-2018 - 02:31 | 21-03-2017 - 06:59 | |
| CVE-2017-5951 | 4.3 |
The mem_get_bits_rectangle function in base/gdevmem.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file.
|
04-11-2017 - 01:29 | 03-04-2017 - 05:59 | |
| CVE-2016-10220 | 4.3 |
The gs_makewordimagedevice function in base/gsdevmem.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file that is mishandled in the PDF T
|
04-11-2017 - 01:29 | 03-04-2017 - 05:59 | |
| CVE-2016-10219 | 4.3 |
The intersect function in base/gxfill.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted file.
|
04-11-2017 - 01:29 | 03-04-2017 - 05:59 | |
| CVE-2017-6196 | 6.8 |
Multiple use-after-free vulnerabilities in the gx_image_enum_begin function in base/gxipixel.c in Ghostscript before ecceafe3abba2714ef9b432035fe0739d9b1a283 allow remote attackers to cause a denial of service (application crash) or possibly have uns
|
22-08-2017 - 01:29 | 24-02-2017 - 04:59 |