腾讯网

Ghostscript开源PDF库中发现关键漏洞

在Linux中广泛使用的PostScript语言和PDF文件开源解释器Ghostscript被发现存在严重远程代码执行漏洞。 该漏洞被标记为CVE-2023-3664,CVSS v3评级为9.8,影响10.01.2之前的所有Ghostscript版本,10.01.2是三周前发布的最新版本。 据Kroll公司的分析师G. Glass和D. Truman称,他们针对 ...
ZDNet

Ghostscript flaw could allow attackers to take remote control of systems - and there's no ...

A vulnerability in Ghostscript, a widely used interpreter for Adobe PostScript and PDF page description languages, could allow attackers to remotely take control of vulnerable systems -- and there's ...
Simon Fraser University

[linux-security] ghostscript allows execution of arbitrary code

Topic ===== ghostscript can be tricked into executing arbitrary code Problem Description ===== An untrusted PostScript file can cause ghostscript to execute arbitrary commands due to insufficient ...
新浪网

GhostScript实现镜像打印输出

在“白领一族”的办公环境中,相信有很多办公室都是这样的:办公室里除了有几台电脑之外,就只有一台普普通通的打印机作为输出设备,所用的软件也是大家再熟悉不过的Word 2000。 不知您在工作中是否遇到过这样的问题:有时为了节约办公费用,领导要求你 ...
Bleeping Computer

Critical RCE found in popular Ghostscript open-source PDF library

Ghostscript, an open-source interpreter for PostScript language and PDF files widely used in Linux, has been found vulnerable to a critical-severity remote code execution flaw. The flaw is tracked as ...