CVE-2007-6725

The CCITTFax decoding filter in Ghostscript 8.60, 8.61, and possibly other versions, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PDF file that triggers a buffer underflow in the cf_decode_2d function.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:ghostscript:ghostscript:8.60:*:*:*:*:*:*:*
cpe:2.3:a:ghostscript:ghostscript:8.61:*:*:*:*:*:*:*

History

07 Nov 2023, 02:01

Type Values Removed Values Added
References
  • {'url': 'http://www.mail-archive.com/fedora-package-announce@redhat.com/msg11830.html', 'name': 'FEDORA-2008-5699', 'tags': [], 'refsource': 'FEDORA'}
  • () http://www.mail-archive.com/fedora-package-announce%40redhat.com/msg11830.html -

Information

Published : 2009-04-08 16:30

Updated : 2024-02-28 11:21


NVD link : CVE-2007-6725

Mitre link : CVE-2007-6725

CVE.ORG link : CVE-2007-6725


JSON object : View

Products Affected

ghostscript

  • ghostscript
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer