Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2008-0411Improper Restriction of Operations within the Bounds of a Memory Buffer in Ghostscript

CWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-121Stack-based Buffer Overflow9 documents9 sources
Severity
6.8MEDIUMNVD
EPSS
15.3%
top 5.36%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
Artifex GhostscriptGhostscript
Timeline
PublishedFeb 28
Latest updateMay 1

Description

Stack-based buffer overflow in the zseticcspace function in zicc.c in Ghostscript 8.61 and earlier allows remote attackers to execute arbitrary code via a postscript (.ps) file containing a long Range array in a .seticcspace operator.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages2 packages

Debianartifex/ghostscript< 8.61.dfsg.1-1.1+3

Patches

Patch: www.debian.orgPatch: www.gentoo.orgPatch: www.debian.org

🔴Vulnerability Details

3
GHSA
GHSA-3xp4-6gjh-55fh: Stack-based buffer overflow in the zseticcspace function in zicc2022-05-01
OSV
CVE-2008-0411: Stack-based buffer overflow in the zseticcspace function in zicc2008-02-28
CVEList
CVE-2008-0411: Stack-based buffer overflow in the zseticcspace function in zicc2008-02-28

💥Exploits & PoCs

1
Exploit-DB
Ghostscript 8.0.1/8.15 - 'zseticcspace()' Remote Buffer Overflow2008-02-27

📋Vendor Advisories

3
Ubuntu
Ghostscript vulnerability2008-04-09
Red Hat
ghostscript: stack-based buffer overflow in .seticcspace operator2008-02-27
Debian
CVE-2008-0411: ghostscript - Stack-based buffer overflow in the zseticcspace function in zicc.c in Ghostscrip...2008

💬Community

1
Bugzilla
CVE-2008-0411 ghostscript: stack-based buffer overflow in .seticcspace operator2008-02-05
CVE-2008-0411 — Ghostscript vulnerability | cvebase