CVE-2007-6725
published 2009-04-08CVE-2007-6725: The CCITTFax decoding filter in Ghostscript 8.60, 8.61, and possibly other versions, allows remote attackers to cause a denial of service (crash) and possibly…
high7.5CVSS 3.1
AVNACLAuNCPIPAP
The CCITTFax decoding filter in Ghostscript 8.60, 8.61, and possibly other versions, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PDF file that triggers a buffer underflow in the cf_decode_2d function.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| artifex | ghostscript | >= 0 < 8.63.dfsg.1-1 | 8.63.dfsg.1-1 |
| artifex | ghostscript | >= 0 < 8.63.dfsg.1-1 | 8.63.dfsg.1-1 |
| artifex | ghostscript | >= 0 < 8.63.dfsg.1-1 | 8.63.dfsg.1-1 |
| artifex | ghostscript | >= 0 < 8.63.dfsg.1-1 | 8.63.dfsg.1-1 |
| debian | ghostscript | < ghostscript 8.63.dfsg.1-1 (bookworm) | ghostscript 8.63.dfsg.1-1 (bookworm) |
| ghostscript | ghostscript | — | — |
CVSS provenance
nvd7.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv7.5HIGH