在Linux中广泛使用的PostScript语言和PDF文件开源解释器Ghostscript被发现存在严重远程代码执行漏洞。 该漏洞被标记为CVE-2023-3664，CVSS v3评级为9.8，影响10.01.2之前的所有Ghostscript版本，10.01.2是三周前发布的最新版本。 据Kroll公司的分析师G. Glass和D. Truman称，他们针对 ...

在“白领一族”的办公环境中，相信有很多办公室都是这样的：办公室里除了有几台电脑之外，就只有一台普普通通的打印机作为输出设备，所用的软件也是大家再熟悉不过的Word 2000。 不知您在工作中是否遇到过这样的问题：有时为了节约办公费用，领导要求你 ...

A vulnerability in Ghostscript, a widely used interpreter for Adobe PostScript and PDF page description languages, could allow attackers to remotely take control of vulnerable systems -- and there's ...

Tavis Ormandy, a Google Project Zero security researcher, has revealed details about a new major vulnerability discovered in Ghostscript, an interpreter for Adobe's PostScript and PDF page description ...

' Print out the revision details. ' If we want to insist on a particular version of Ghostscript ' we should check the return value of CheckRevision(). CheckRevision(704) ' Load Ghostscript and get the ...

Ghostscript, an open-source interpreter for PostScript language and PDF files widely used in Linux, has been found vulnerable to a critical-severity remote code execution flaw. The flaw is tracked as ...

IT security researchers have discovered five security vulnerabilities in Ghostscript. Attackers can, for example, bypass the sandbox and execute arbitrary code. A proof-of-concept exploit is publicly ...

Topic ===== ghostscript can be tricked into executing arbitrary code Problem Description ===== An untrusted PostScript file can cause ghostscript to execute arbitrary commands due to insufficient ...