CVE-2009-4270

Stack-based buffer overflow in the errprintf function in base/gsmisc.c in ghostscript 8.64 through 8.70 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PDF file, as originally reported for debug logging code in gdevcups.c in the CUPS output driver.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:ghostscript:ghostscript:8.64:*:*:*:*:*:*:*
cpe:2.3:a:ghostscript:ghostscript:8.70:*:*:*:*:*:*:*

History

No history.

Information

Published : 2009-12-21 16:30

Updated : 2024-02-28 11:41


NVD link : CVE-2009-4270

Mitre link : CVE-2009-4270

CVE.ORG link : CVE-2009-4270


JSON object : View

Products Affected

ghostscript

  • ghostscript
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer