Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

CVE-2008-0411

Published

16 years ago

Last Modified

2 months ago

CVSSv2.0 Severity

Medium

Impact Analysis

Stack-based buffer overflow in the zseticcspace function in zicc.c in Ghostscript 8.61 and earlier allows remote attackers to execute arbitrary code via a postscript (.ps) file containing a long Range array in a .seticcspace operator..

CVSSv2.0 Score

Severity: Medium
Base Score: 6.8/10
Exploit Score: 8.6/10
Access Vector: Network
Access Complexity: Medium
Authentication Required: None
Impact Score: 6.4/10
Confidentiality Impact: Partial
Availability Impact: Partial
Integrity Impact: Partial

Products Affected

CPE	Affected	Excluding
cpe:2.3:o:debian:debian_linux:3.1::mips:::::	No	-
cpe:2.3:o:debian:debian_linux:3.1::ia-64:::::	No	-
cpe:2.3:o:debian:debian_linux:3.1::hppa:::::	No	-
cpe:2.3:o:debian:debian_linux:3.1::sparc:::::	No	-
cpe:2.3:o:debian:debian_linux:3.1:::::::*	No	-
cpe:2.3:o:debian:debian_linux:3.1::arm:::::	No	-
cpe:2.3:o:debian:debian_linux:3.1::mipsel:::::	No	-
cpe:2.3:o:debian:debian_linux:3.1::s-390:::::	No	-
cpe:2.3:o:debian:debian_linux:3.1::alpha:::::	No	-
cpe:2.3:o:debian:debian_linux:3.1::ppc:::::	No	-
cpe:2.3:o:debian:debian_linux:3.1::m68k:::::	No	-
cpe:2.3:o:debian:debian_linux:3.1::ia-32:::::	No	-
cpe:2.3:o:debian:debian_linux:3.1::amd64:::::	No	-
cpe:2.3:o:debian:debian_linux:4.0::powerpc:::::	No	-
cpe:2.3:o:debian:debian_linux:4.0::ia-64:::::	No	-
cpe:2.3:o:debian:debian_linux:4.0::hppa:::::	No	-
cpe:2.3:o:debian:debian_linux:4.0::s-390:::::	No	-
cpe:2.3:o:debian:debian_linux:4.0::mips:::::	No	-
cpe:2.3:o:debian:debian_linux:4.0::sparc:::::	No	-
cpe:2.3:o:debian:debian_linux:4.0::arm:::::	No	-
cpe:2.3:o:debian:debian_linux:4.0::mipsel:::::	No	-
cpe:2.3:o:debian:debian_linux:4.0:::::::*	No	-
cpe:2.3:o:debian:debian_linux:4.0::m68k:::::	No	-
cpe:2.3:o:debian:debian_linux:4.0::amd64:::::	No	-
cpe:2.3:o:debian:debian_linux:4.0::alpha:::::	No	-
cpe:2.3:o:debian:debian_linux:4.0::ia-32:::::	No	-
cpe:2.3:o:mandrakesoft:mandrake_linux:2007:::::::*	No	-
cpe:2.3:o:mandrakesoft:mandrake_linux:2007.0_x86_64:::::	No	-
cpe:2.3:o:mandrakesoft:mandrake_linux:2007.1:::::::*	No	-
cpe:2.3:o:mandrakesoft:mandrake_linux:2007.1::x86_64::::	No	-
cpe:2.3:o:mandrakesoft:mandrake_linux:2008.0::x86_64::::	No	-
cpe:2.3:o:mandrakesoft:mandrake_linux:2008.0:::::::*	No	-
cpe:2.3:o:mandrakesoft:mandrake_linux_corporate_server:3.0:*	No	-
cpe:2.3:o:mandrakesoft:mandrake_linux_corporate_server:4.0:*	No	-
cpe:2.3:o:mandrakesoft:mandrakesoft_corporate_server:3.0_x86	No	-
cpe:2.3:o:mandrakesoft:mandrakesoft_corporate_server:4.0_x86	No	-
cpe:2.3:o:redhat:desktop:3.0:::::::*	No	-
cpe:2.3:o:redhat:desktop:4.0:::::::*	No	-
cpe:2.3:o:redhat:enterprise_linux:5::server:::::	No	-
cpe:2.3:o:redhat:enterprise_linux:as_3:::::::*	No	-
cpe:2.3:o:redhat:enterprise_linux:as_4:::::::*	No	-
cpe:2.3:o:redhat:enterprise_linux:es_3:::::::*	No	-
cpe:2.3:o:redhat:enterprise_linux:es_4:::::::*	No	-
cpe:2.3:o:redhat:enterprise_linux:ws_3:::::::*	No	-
cpe:2.3:o:redhat:enterprise_linux:ws_4:::::::*	No	-
cpe:2.3:o:redhat:enterprise_linux_desktop:5::client::::*	No	-
cpe:2.3:o:redhat:enterprise_linux_desktop_workstation:5:*:cl	No	-
cpe:2.3:o:rpath:rpath_linux:1:::::::*	No	-
cpe:2.3:o:suse:novell_linux_pos:9:::::::*	No	-
cpe:2.3:o:suse:open_suse:10.2:::::::*	No	-
cpe:2.3:o:suse:open_suse:10.3:::::::*	No	-
cpe:2.3:o:suse:suse_linux:9.0::enterprise_server:::::	No	-
cpe:2.3:o:suse:suse_linux:10:sp1:enterprise_server:::::*	No	-
cpe:2.3:o:suse:suse_linux:10:sp1:enterprise_desktop:::::	No	-
cpe:2.3:o:suse:suse_linux:10.1::x86_64:::::	No	-
cpe:2.3:o:suse:suse_linux:10.1::x86:::::	No	-
cpe:2.3:o:suse:suse_linux:10.1::ppc:::::	No	-
cpe:2.3:o:suse:suse_open_enterprise_server:0:::::::*	No	-
cpe:2.3:a:ghostscript:ghostscript::::::::	Yes	-
cpe:2.3:o:debian:debian_linux:3.1::ia-64:::::	No	-
cpe:2.3:o:debian:debian_linux:3.1::hppa:::::	No	-
cpe:2.3:o:debian:debian_linux:3.1::sparc:::::	No	-
cpe:2.3:o:debian:debian_linux:3.1:::::::*	No	-
cpe:2.3:o:debian:debian_linux:3.1::arm:::::	No	-
cpe:2.3:o:debian:debian_linux:3.1::mipsel:::::	No	-
cpe:2.3:o:debian:debian_linux:3.1::s-390:::::	No	-
cpe:2.3:o:debian:debian_linux:3.1::alpha:::::	No	-
cpe:2.3:o:debian:debian_linux:3.1::ppc:::::	No	-
cpe:2.3:o:debian:debian_linux:3.1::m68k:::::	No	-
cpe:2.3:o:debian:debian_linux:3.1::mips:::::	No	-
cpe:2.3:o:debian:debian_linux:3.1::ia-32:::::	No	-
cpe:2.3:o:debian:debian_linux:3.1::amd64:::::	No	-
cpe:2.3:o:debian:debian_linux:4.0::powerpc:::::	No	-
cpe:2.3:o:debian:debian_linux:4.0::ia-32:::::	No	-
cpe:2.3:o:debian:debian_linux:4.0::ia-64:::::	No	-
cpe:2.3:o:debian:debian_linux:4.0::hppa:::::	No	-
cpe:2.3:o:debian:debian_linux:4.0::s-390:::::	No	-
cpe:2.3:o:debian:debian_linux:4.0::mips:::::	No	-
cpe:2.3:o:debian:debian_linux:4.0::m68k:::::	No	-
cpe:2.3:o:debian:debian_linux:4.0::sparc:::::	No	-
cpe:2.3:o:debian:debian_linux:4.0::arm:::::	No	-
cpe:2.3:o:debian:debian_linux:4.0::amd64:::::	No	-
cpe:2.3:o:debian:debian_linux:4.0::mipsel:::::	No	-
cpe:2.3:o:debian:debian_linux:4.0:::::::*	No	-
cpe:2.3:o:debian:debian_linux:4.0::alpha:::::	No	-
cpe:2.3:a:ghostscript:ghostscript:0:::::::*	Yes	-
cpe:2.3:a:ghostscript:ghostscript:8.0.1:::::::*	Yes	-
cpe:2.3:a:ghostscript:ghostscript:8.15:::::::*	Yes	-

Free and open-source vulnerability scanner

Available for macOS, Windows, and Linux

CVE-2008-0411

Published

Last Modified

CVSSv2.0 Severity

Impact Analysis

Share

CVSSv2.0 Score

Products Affected

References

Free and open-source vulnerability scanner

Available for macOS, Windows, and Linux

CVE-2008-0411

CVE information

Published

Last Modified

CVSSv2.0 Severity

Impact Analysis

Share

Description

CVSSv2.0 Score

Products Affected

References