Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6679

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2008-6679
Last Modified 21 Aug 2010 01:28:26
Published 08 Apr 2009 12:30:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-6679

Summary

Buffer overflow in the BaseFont writer module in Ghostscript 8.62, and possibly other versions, allows remote attackers to cause a denial of service (ps2pdf crash) and possibly execute arbitrary code via a crafted Postscript file.

Vulnerable Systems

Application

  • Ghostscript 8.62


References

FEDORA - FEDORA-2009-3710

FEDORA - FEDORA-2009-3709

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=493445

VUPEN - ADV-2009-1708

UBUNTU - USN-757-1

BUGTRAQ - 20090417 rPSA-2009-0060-1 ghostscript

REDHAT - RHSA-2009:0421

MLIST - [oss-security] 20090401 CVE request -- ghostscript

MANDRIVA - MDVSA-2009:095

CONFIRM - http://wiki.rpath.com/Advisories:rPSA-2009-0060

SUNALERT - 262288

SECUNIA - 35569

SECUNIA - 35559

SECUNIA - 35416

SECUNIA - 34732

SECUNIA - 34729

SECUNIA - 34667

SUSE - SUSE-SR:2009:011

CONFIRM - http://bugs.ghostscript.com/show_bug.cgi?id=690211

Related Patches

Novell SUSE 2009:6245 ghostscript-fonts-other security update for SLE 10 SP2 i586


Last Updated: 27 May 2016 10:49:17