Lucene search

PRIOn knowledge basePRION:CVE-2016-7976

HistoryAug 07, 2017 - 8:29 p.m.

Code injection

2017-08-0720:29:00

PRIOn knowledge base

www.prio-n.com

8 High

AI Score

Confidence

Low

0.036 Low

EPSS

Percentile

91.7%

The PS Interpreter in Ghostscript 9.18 and 9.20 allows remote attackers to execute arbitrary code via crafted userparams.

CPENameOperatorVersion
ghostscripteq9.18
ghostscripteq9.20

CPE	Name	Operator	Version
	ghostscript	eq	9.18
	ghostscript	eq	9.20

References

git.ghostscript.com/?p=user/chrisl/ghostpdl.git%3Ba=commit%3Bh=6d444c273da5499a4cd72f21cb6d4c9a5256807d

www.debian.org/security/2016/dsa-3691

www.openwall.com/lists/oss-security/2016/10/19/6

www.securityfocus.com/bid/95332

bugs.ghostscript.com/show_bug.cgi?id=697178

security.gentoo.org/glsa/201702-31