Release DateJun 24, 2008 |
Severityhigh |
ImpactSystem Compromise: Remote attackers can gain control of vulnerable systems. |
DescriptionThis indicates an attempt to exploit a buffer-overflow vulnerability in Ghostscript.The vulnerability is caused by a boundary-check error when the vulnerable software opens a crafted .ps file. A successful exploit allows a remote attacker to execute arbitrary code. |
Affected ProductsGhostscript 8.61 and earlier. |
Recommended ActionsThe vendor has issued a fix. Please refer to the vendor's website for the suggested workaround:http://www.ghostscript.com/awki |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2008-0411 |
Reference/shttp://www.securityfocus.com/bid/28017 (BugTraq) |
