Search the Community
Showing results for tags 'ghostscript'.
-
Introduction A few months ago, during a web application audit we noticed that the application was using the Python Image Library (PIL) to perform resizing on the uploaded images. With a bit of curiosity we went to read the code and stumbled on the src/PIL/EpsImagePulgin.py file, which is in fact a wrapper around the Ghostscript binary that is used to handle the Encapsulated PostScript file format. The Ghostscript binary is called from Python, which means that if we managed to find a vulnerability in Ghostscript, we could have access to the web server. As I was soon to realize, the Ghostscript binary is also used in other places, which means that finding a vulnerability was pretty interesting from an attacker point of view. [hide][Hidden Content]]
-
- 1
-
- shell
- ghostscript
-
(and 4 more)
Tagged with:
-
Ghostscript has an issue with pseudo-operators that can lead to remote code execution. Version 9.26 is affected. View the full article
-
- ghostscript
- pseudo-operator
-
(and 3 more)
Tagged with:
-
The fix Ubuntu applied to address the Ghostscript vulnerability identified in CVE-2018-16510 appears to be insufficient. View the full article
-
- ubuntu
- ghostscript
-
(and 2 more)
Tagged with:
-
Ghostscript suffers from an executeonly bypass with errorhandler setup. View the full article
-
- ghostscript
- executeonly
-
(and 1 more)
Tagged with:
-
Exploits Ghostscript Failed Restore Command Execution
1337day-Exploits posted a topic in Updated Exploits
This Metasploit module exploits a -dSAFER bypass in Ghostscript to execute arbitrary commands by handling a failed restore (grestore) in PostScript to disable LockSafetyParams and avoid invalidaccess. This vulnerability is reachable via libraries such as ImageMagick, and this module provides the latest vector for Ghostscript. View the full article-
- ghostscript
- failed
-
(and 3 more)
Tagged with:
-
Ghostscript suffers from file disclosure, shell command execution, memory corruption, and type confusion bugs. View the full article
-
- ghostscript
- command
-
(and 5 more)
Tagged with: