Oval Definition:	oval:org.mitre.oval:def:9557
Revision Date: 2013-04-29 Version: 12 Title: Stack-based buffer overflow in the zseticcspace function in zicc.c in Ghostscript 8.61 and earlier allows remote attackers to execute arbitrary code via a postscript (.ps) file containing a long Range array in a .seticcspace operator. Description: Stack-based buffer overflow in the zseticcspace function in zicc.c in Ghostscript 8.61 and earlier allows remote attackers to execute arbitrary code via a postscript (.ps) file containing a long Range array in a .seticcspace operator. Family: unix Class: vulnerability Status: ACCEPTED Reference(s): CVE-2008-0411 Platform(s): CentOS Linux 3 CentOS Linux 4 CentOS Linux 5 Oracle Linux 4 Oracle Linux 5 Red Hat Enterprise Linux 3 Red Hat Enterprise Linux 4 Red Hat Enterprise Linux 5 Product(s): Definition Synopsis OS Section: RHEL3, CentOS3 RHEL3 or CentOS3 The operating system installed on the system is Red Hat Enterprise Linux 3 OR CentOS Linux 3.x AND Configuration section hpijs is earlier than 0:1.3-32.1.13 OR ghostscript-devel is earlier than 0:7.05-32.1.13 OR ghostscript is earlier than 0:7.05-32.1.13 OR OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 OR CentOS Linux 4.x OR Oracle Linux 4.x AND Configuration section ghostscript-devel is earlier than 0:7.07-33.2.el4_6.1 OR ghostscript is earlier than 0:7.07-33.2.el4_6.1 OR ghostscript-gtk is earlier than 0:7.07-33.2.el4_6.1 OR OS Section: RHEL5, CentOS5, Oracle Linux 5 RHEL5, CentOS5 or Oracle Linux 5 The operating system installed on the system is Red Hat Enterprise Linux 5 OR The operating system installed on the system is CentOS Linux 5.x OR Oracle Linux 5.x AND Configuration section ghostscript-devel is earlier than 0:8.15.2-9.1.el5_1.1 OR ghostscript is earlier than 0:8.15.2-9.1.el5_1.1 OR ghostscript-gtk is earlier than 0:8.15.2-9.1.el5_1.1
BACK