Published: 06/12/2023 Updated: 16/12/2023

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 0

An issue exists in the function gdev_prn_open_printer_seekable() in Artifex Ghostscript up to and including 10.02.0 allows remote malicious users to crash the application via a dangling pointer.

Vulnerable Product	Search on Vulmon	Subscribe to Product
artifex ghostscript

It was discovered that Ghostscript, the GPL PostScript/PDF interpreter, does not properly handle errors in the gdev_prn_open_printer_seekable() function, which could result in the execution of arbitrary commands if malformed document files are processed For the stable distribution (bookworm), this problem has been fixed in version 1000~dfsg-11+d ...

An issue was discovered in the function gdev_prn_open_printer_seekable() in Artifex Ghostscript through 10020 allows remote attackers to crash the application via a dangling pointer (CVE-2023-46751) ...

CWE-416 https://ghostscript.com/https://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=dcdbc595c13c9d11d235702dff46bb74c80f7698 https://bugs.ghostscript.com/show_bug.cgi?id=707264 https://www.debian.org/security/2023/dsa-5578 https://nvd.nist.gov https://www.debian.org/security/2023/dsa-5578

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2023-46751

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect