cbcvebase.
CVE-2002-0838
published 2002-10-10

CVE-2002-0838: Buffer overflow in (1) gv 3.5.8 and earlier, (2) gvv 1.0.2 and earlier, (3) ggv 1.99.90 and earlier, (4) gnome-gv, and (5) kghostview in kdegraphics 2.2.2 and…

PriorityP425medium4.6CVSS 2.0
AVLACLAuNCPIPAP
EXPLOIT
EPSS
2.02%
78.6th percentile
Buffer overflow in (1) gv 3.5.8 and earlier, (2) gvv 1.0.2 and earlier, (3) ggv 1.99.90 and earlier, (4) gnome-gv, and (5) kghostview in kdegraphics 2.2.2 and earlier, allows attackers to execute arbitrary code via a malformed (a) PDF or (b) PostScript file, which is processed by an unsafe call to sscanf.

Affected

28 ranges· showing 25
VendorProductVersion rangeFixed in
debiangv< gv 1:3.5.8-27 (bookworm)gv 1:3.5.8-27 (bookworm)
ggvggv
ghostviewghostview
ghostviewghostview
ghostviewghostview
ghostviewghostview
gvgv
gvgv
gvgv
gvgv
gvgv
gvgv
gvgv
gvgv
gvgv
gvgv
gvgv
gvgv
gvgv
gvgv
gvgv
gvgv
gvgv
gvgv
gvgv>= 0 < 1:3.5.8-271:3.5.8-27

CVSS provenance

nvdv2.04.6MEDIUMAV:L/AC:L/Au:N/C:P/I:P/A:P
osv4.6MEDIUM
vendor_debian4.6MEDIUM
vendor_redhat4.6MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.