Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-1717

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2004-1717
Last Modified 05 Sep 2008 04:42:09
Published 16 Aug 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-1717

Summary

Multiple buffer overflows in the psscan function in ps.c for gv (ghostview) allow remote attackers to execute arbitrary code via a Postscript file with a long (1) BoundingBox, (2) comment, (3) Orientation, (4) PageOrder, or (5) Pages value.

Vulnerable Systems

Application

  • Gv 2.7.6

  • Gv 2.7b1

  • Gv 2.7b2

  • Gv 2.7b3

  • Gv 2.7b4

  • Gv 2.7b5

  • Gv 2.9.4

  • Gv 3.0.0

  • Gv 3.0.4

  • Gv 3.1.4

  • Gv 3.1.6

  • Gv 3.2.4

  • Gv 3.4.12

  • Gv 3.4.2

  • Gv 3.4.3

  • Gv 3.5.2

  • Gv 3.5.3

  • Gv 3.5.8


References

XF - gv-psscan-header-bo(17019)

BID - 10944

BUGTRAQ - 20040816 gv buffer overflows: here, there, and everywhere


Last Updated: 27 May 2016 10:39:09