CVE-2004-1717

Published Aug 16, 2004

Last updated 7 years ago

CVSS info 7.5

Overview

Description: Multiple buffer overflows in the psscan function in ps.c for gv (ghostview) allow remote attackers to execute arbitrary code via a Postscript file with a long (1) BoundingBox, (2) comment, (3) Orientation, (4) PageOrder, or (5) Pages value.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Vendor comments

Red HatThis CVE is a duplicate (rediscovery) of CVE-2002-0838

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:gv:gv:2.7.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "21635C49-6F67-4852-A34B-6CA758D92F48"
          },
          {
            "criteria": "cpe:2.3:a:gv:gv:2.7b1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B2CDF1F6-AEA8-493B-AF8E-B06C2AFD0DCC"
          },
          {
            "criteria": "cpe:2.3:a:gv:gv:2.7b2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E062D50D-DEFA-45A6-B749-E3B7CAACD621"
          },
          {
            "criteria": "cpe:2.3:a:gv:gv:2.7b3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "81853A68-8286-4159-87FC-91CE94484DDE"
          },
          {
            "criteria": "cpe:2.3:a:gv:gv:2.7b4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6A2C2C2E-227C-477A-8E6B-D82C941A778F"
          },
          {
            "criteria": "cpe:2.3:a:gv:gv:2.7b5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9B0FE26D-8B0B-4620-BC5B-6C0E0D635FA5"
          },
          {
            "criteria": "cpe:2.3:a:gv:gv:2.9.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BDB7A45D-C67B-4D46-94AF-3BAA75C06157"
          },
          {
            "criteria": "cpe:2.3:a:gv:gv:3.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D68136DD-B309-47D7-9320-D48EF6E0F9B9"
          },
          {
            "criteria": "cpe:2.3:a:gv:gv:3.0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8F698620-41A9-4058-B3A2-68134FDEACD0"
          },
          {
            "criteria": "cpe:2.3:a:gv:gv:3.1.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9775BB2D-B945-4533-BBA7-2602CD4B2C0B"
          },
          {
            "criteria": "cpe:2.3:a:gv:gv:3.1.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0FE2C974-BC5F-4D18-8B56-6E76CFC8237F"
          },
          {
            "criteria": "cpe:2.3:a:gv:gv:3.2.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "621BAE10-276D-44DA-A124-51D4A00E7552"
          },
          {
            "criteria": "cpe:2.3:a:gv:gv:3.4.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CE42231C-7764-41ED-B7A3-641CFC58BBC8"
          },
          {
            "criteria": "cpe:2.3:a:gv:gv:3.4.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4655CA87-E507-4FAF-A848-C502BE8564FD"
          },
          {
            "criteria": "cpe:2.3:a:gv:gv:3.4.12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DAE9A7B0-6DF8-44BC-A9EC-7EB89AC91722"
          },
          {
            "criteria": "cpe:2.3:a:gv:gv:3.5.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DB5E5D66-FF08-4B26-A2BD-421E7FFF73B2"
          },
          {
            "criteria": "cpe:2.3:a:gv:gv:3.5.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3A29A154-2CF6-441B-8715-84F49F21A15A"
          },
          {
            "criteria": "cpe:2.3:a:gv:gv:3.5.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "185BFE23-5F13-45A1-B514-21957A613799"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Vendor comments

Configurations

References