CVE-2010-2055

Severity

72%

Complexity

39%

Confidentiality

165%

Ghostscript 8.71 and earlier reads initialization files from the current working directory, which allows local users to execute arbitrary PostScript commands via a Trojan horse file, related to improper support for the -P- option to the gs program, as demonstrated using gs_init.ps, a different vulnerability than CVE-2010-4820.

Ghostscript 8.71 and earlier reads initialization files from the current working directory, which allows local users to execute arbitrary PostScript commands via a Trojan horse file, related to improper support for the -P- option to the gs program, as demonstrated using gs_init.ps, a different vulnerability than CVE-2010-4820.

CVSS 2.0 Base Score 7.2. CVSS Attack Vector: local. CVSS Attack Complexity: low. CVSS Vector: (AV:L/AC:L/Au:N/C:C/I:C/A:C).

Overview

Type

Artifex

First reported 14 years ago

2010-07-22 05:43:00

Last updated 10 years ago

2015-01-09 23:44:00

Affected Software

Artifex AFPL Ghostscript 6.0

6.0

Artifex AFPL Ghostscript 6.01

6.01

Artifex AFPL Ghostscript 6.50

6.50

Artifex AFPL Ghostscript 7.00

7.00

Artifex AFPL Ghostscript 7.03

7.03

Artifex AFPL Ghostscript 7.04

7.04

Artifex AFPL Ghostscript 8.00

8.00

Artifex AFPL Ghostscript 8.11

8.11

Artifex AFPL Ghostscript 8.12

8.12

Artifex AFPL Ghostscript 8.13

8.13

Artifex AFPL Ghostscript 8.14

8.14

Artifex AFPL Ghostscript 8.50

8.50

Artifex AFPL Ghostscript 8.51

8.51

Artifex AFPL Ghostscript 8.52

8.52

Artifex AFPL Ghostscript 8.53

8.53

Artifex AFPL Ghostscript 8.54

8.54

Artifex Ghostscript Fonts 6.0

6.0

Artifex Ghostscript Fonts 8.11

8.11

Artifex GPL Ghostscript 8.01

8.01

Artifex GPL Ghostscript 8.15

8.15

Artifex GPL Ghostscript 8.50

8.50

Artifex GPL Ghostscript 8.51

8.51

Artifex GPL Ghostscript 8.54

8.54

Artifex GPL Ghostscript 8.56

8.56

Artifex GPL Ghostscript 8.57

8.57

Artifex GPL Ghostscript 8.60

8.60

Artifex GPL Ghostscript 8.61

8.61

Artifex GPL Ghostscript 8.62

8.62

Artifex GPL Ghostscript 8.63

8.63

Artifex GPL Ghostscript 8.64

8.64

Artifex GPL Ghostscript 8.70

8.70

Artifex GPL Ghostscript

References

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=583183

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=583316

http://bugs.ghostscript.com/show_bug.cgi?id=691339

Exploit

http://bugs.ghostscript.com/show_bug.cgi?id=691350

FEDORA-2010-10660

FEDORA-2010-10642

SUSE-SR:2010:014

http://savannah.gnu.org/forum/forum.php?forum_id=6368

40452

Vendor Advisory

40475

Vendor Advisory

40532

Vendor Advisory

GLSA-201412-17

66247

20100522 Ghostscript 8.64 executes random code at startup

20100526 Re: Ghostscript 8.64 executes random code at startup

Exploit

20100526 Re: Ghostscript 8.64 executes random code at startup

Exploit

20100526 Re: Ghostscript 8.64 executes random code at startup

ADV-2010-1757

Vendor Advisory

https://bugzilla.novell.com/show_bug.cgi?id=608071

https://bugzilla.redhat.com/show_bug.cgi?id=599564

Patch

RHSA-2012:0095

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.