Vulnerability Details CVE-2010-4054
The gs_type2_interpret function in Ghostscript allows remote attackers to cause a denial of service (incorrect pointer dereference and application crash) via crafted font data in a compressed data stream, aka bug 691043.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 71.9%
CVSS Severity
CVSS v2 Score 4.3
References
- http://ghostscript.com/pipermail/gs-cvs/2010-January/010333.html
- http://rhn.redhat.com/errata/RHSA-2012-0096.html
- http://security.gentoo.org/glsa/glsa-201412-17.xml
- http://www.kb.cert.org/vuls/id/538191
- https://rhn.redhat.com/errata/RHSA-2012-0095.html
- http://ghostscript.com/pipermail/gs-cvs/2010-January/010333.html
- http://rhn.redhat.com/errata/RHSA-2012-0096.html
- http://security.gentoo.org/glsa/glsa-201412-17.xml
- http://www.kb.cert.org/vuls/id/538191
- https://rhn.redhat.com/errata/RHSA-2012-0095.html
Products affected by CVE-2010-4054
-
cpe:2.3:a:artifex:afpl_ghostscript:6.0
-
cpe:2.3:a:artifex:afpl_ghostscript:6.01
-
cpe:2.3:a:artifex:afpl_ghostscript:6.50
-
cpe:2.3:a:artifex:afpl_ghostscript:7.00
-
cpe:2.3:a:artifex:afpl_ghostscript:7.03
-
cpe:2.3:a:artifex:afpl_ghostscript:7.04
-
cpe:2.3:a:artifex:afpl_ghostscript:8.00
-
cpe:2.3:a:artifex:afpl_ghostscript:8.11
-
cpe:2.3:a:artifex:afpl_ghostscript:8.12
-
cpe:2.3:a:artifex:afpl_ghostscript:8.13
-
cpe:2.3:a:artifex:afpl_ghostscript:8.14
-
cpe:2.3:a:artifex:afpl_ghostscript:8.50
-
cpe:2.3:a:artifex:afpl_ghostscript:8.51
-
cpe:2.3:a:artifex:afpl_ghostscript:8.52
-
cpe:2.3:a:artifex:afpl_ghostscript:8.53
-
cpe:2.3:a:artifex:afpl_ghostscript:8.54
-
cpe:2.3:a:artifex:afpl_ghostscript:9.0
-
cpe:2.3:a:artifex:ghostscript_fonts:6.0
-
cpe:2.3:a:artifex:ghostscript_fonts:8.11
-
cpe:2.3:a:artifex:gpl_ghostscript:8.01
-
cpe:2.3:a:artifex:gpl_ghostscript:8.15
-
cpe:2.3:a:artifex:gpl_ghostscript:8.50
-
cpe:2.3:a:artifex:gpl_ghostscript:8.51
-
cpe:2.3:a:artifex:gpl_ghostscript:8.54
-
cpe:2.3:a:artifex:gpl_ghostscript:8.56
-
cpe:2.3:a:artifex:gpl_ghostscript:8.57
-
cpe:2.3:a:artifex:gpl_ghostscript:8.60
-
cpe:2.3:a:artifex:gpl_ghostscript:8.61
-
cpe:2.3:a:artifex:gpl_ghostscript:8.62
-
cpe:2.3:a:artifex:gpl_ghostscript:8.63
-
cpe:2.3:a:artifex:gpl_ghostscript:8.64
-
cpe:2.3:a:artifex:gpl_ghostscript:8.70
-
cpe:2.3:a:artifex:gpl_ghostscript:8.71