Stack-based buffer overflow in the errprintf function in base/gsmisc.c in ghostscript 8.64 up to and including 8.70 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PDF file, as originally reported for debug logging code in gdevcups.c in the CUPS output driver.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ghostscript ghostscript 8.64 |
||
ghostscript ghostscript 8.70 |