GhostScript Insecure Temporary File Creation Vulnerability

Bugtraq ID: 11285
Class: Design Error
CVE: CVE-2004-0967
Remote: No
Local: Yes
Published: Sep 30 2004 12:00AM
Updated: May 10 2006 07:59PM
Credit: Trustix security engineers are credited with the discovery of this vulnerability.
Vulnerable: SCO Unixware 7.1.4
SCO Open Server 6.0
SCO Open Server 5.0.7
RedHat Enterprise Linux WS 3
RedHat Enterprise Linux ES 3
RedHat Desktop 3.0
Red Hat Enterprise Linux AS 3
Aladdin Enterprises Ghostscript 7.0 7
Aladdin Enterprises Ghostscript 7.0 6
Aladdin Enterprises Ghostscript 7.0 5
+ Gentoo Linux 1.4 _rc3
 + Gentoo Linux 1.4 _rc3
 + Gentoo Linux 1.4 _rc2
 + Gentoo Linux 1.4 _rc2
 + MandrakeSoft Corporate Server 2.1
+ MandrakeSoft Corporate Server 2.1
+ Mandriva Linux Mandrake 9.1 ppc
 + Mandriva Linux Mandrake 9.1 ppc
 + Mandriva Linux Mandrake 9.1
+ Mandriva Linux Mandrake 9.1
+ Mandriva Linux Mandrake 9.0
+ Mandriva Linux Mandrake 9.0
+ RedHat Linux 9.0 i386
 + RedHat Linux 8.0
+ RedHat Linux 8.0
Aladdin Enterprises Ghostscript 7.0 4
+ OpenPKG OpenPKG 1.1
Aladdin Enterprises Ghostscript 6.53
+ Mandriva Linux Mandrake 8.2 ppc
 + Mandriva Linux Mandrake 8.2
+ Mandriva Linux Mandrake 8.2
Aladdin Enterprises Ghostscript 6.52
+ HP Secure OS software for Linux 1.0
+ HP Secure OS software for Linux 1.0
+ RedHat Linux 7.3 i386
 + RedHat Linux 7.2 ia64
 + RedHat Linux 7.2 ia64
 + RedHat Linux 7.2 i386
 + RedHat Linux 7.2 i386
 + RedHat Linux 7.1 ia64
 + RedHat Linux 7.1 ia64
 + RedHat Linux 7.1 i386
 + RedHat Linux 7.1 i386
 + RedHat Linux 7.1 alpha
 + RedHat Linux 7.1 alpha
 + RedHat Linux 7.0 sparc
 + RedHat Linux 7.0 sparc
 + RedHat Linux 7.0 i386
 + RedHat Linux 7.0 i386
 + RedHat Linux 7.0 alpha
 + RedHat Linux 7.0 alpha
 + RedHat Linux 6.2 sparc
 + RedHat Linux 6.2 sparc
 + RedHat Linux 6.2 i386
 + RedHat Linux 6.2 i386
 + RedHat Linux 6.2 alpha
 + RedHat Linux 6.2 alpha
 Aladdin Enterprises Ghostscript 6.51
+ Caldera OpenLinux Server 3.1.1
+ Caldera OpenLinux Server 3.1.1
+ Caldera OpenLinux Server 3.1
+ Caldera OpenLinux Server 3.1
+ Caldera OpenLinux Workstation 3.1.1
+ Caldera OpenLinux Workstation 3.1.1
+ Caldera OpenLinux Workstation 3.1
+ Caldera OpenLinux Workstation 3.1
+ Sun Linux 5.0.5
Aladdin Enterprises Ghostscript 5.50.8 _7
+ RedHat Linux 7.0 i386
 Aladdin Enterprises Ghostscript 5.50.8
Aladdin Enterprises Ghostscript 5.50
+ HP Secure OS software for Linux 1.0
+ RedHat Linux 7.1 ia64
 + RedHat Linux 7.1 ia64
 + RedHat Linux 7.1 i386
 + RedHat Linux 7.1 i386
 + RedHat Linux 7.1 alpha
 + RedHat Linux 7.1 alpha
 + RedHat Linux 7.0 J i386
 + RedHat Linux 7.0 J i386
 + RedHat Linux 7.0 sparc
 + RedHat Linux 7.0 sparc
 + RedHat Linux 7.0 i386
 + RedHat Linux 7.0 i386
 + RedHat Linux 7.0 alpha
 + RedHat Linux 7.0 alpha
 + RedHat Linux 6.2 sparc
 + RedHat Linux 6.2 sparc
 + RedHat Linux 6.2 i386
 + RedHat Linux 6.2 i386
 + RedHat Linux 6.2 alpha
 + RedHat Linux 6.2 alpha
 Aladdin Enterprises Ghostscript 5.10.16
Aladdin Enterprises Ghostscript 5.10.15
+ Caldera OpenLinux Desktop 2.3
+ Caldera OpenLinux Desktop 2.3
+ Caldera OpenLinux eBuilder 3.0
+ SCO eDesktop 2.4
+ SCO eDesktop 2.4
+ SCO eServer 2.3
+ SCO eServer 2.3
Aladdin Enterprises Ghostscript 5.10.12 cl
+ Conectiva Linux 5.1
+ Conectiva Linux 5.0
+ Conectiva Linux 5.0
+ Conectiva Linux 4.2
+ Conectiva Linux 4.2
+ Conectiva Linux 4.1
+ Conectiva Linux 4.1
+ Conectiva Linux 4.0 es
 + Conectiva Linux 4.0 es
 + Conectiva Linux 4.0
+ Conectiva Linux 4.0
Aladdin Enterprises Ghostscript 5.10.10 mdk
+ Mandriva Linux Mandrake 7.2
+ Mandriva Linux Mandrake 7.1
+ Mandriva Linux Mandrake 7.1
+ Mandriva Linux Mandrake 7.0
+ Mandriva Linux Mandrake 7.0
+ Mandriva Linux Mandrake 6.1
+ Mandriva Linux Mandrake 6.1
+ Mandriva Linux Mandrake 6.0
+ Mandriva Linux Mandrake 6.0
Aladdin Enterprises Ghostscript 5.10.10 -1 mdk
+ Mandriva Linux Mandrake 7.2
+ Mandriva Linux Mandrake 7.1
+ Mandriva Linux Mandrake 7.1
+ Mandriva Linux Mandrake 7.0
+ Mandriva Linux Mandrake 7.0
+ Mandriva Linux Mandrake 6.1
+ Mandriva Linux Mandrake 6.1
+ Mandriva Linux Mandrake 6.0
+ Mandriva Linux Mandrake 6.0
Aladdin Enterprises Ghostscript 5.10.10 -1
Aladdin Enterprises Ghostscript 5.10.10
+ Debian Linux 2.2 sparc
 + Debian Linux 2.2 sparc
 + Debian Linux 2.2 powerpc
 + Debian Linux 2.2 powerpc
 + Debian Linux 2.2 arm
 + Debian Linux 2.2 arm
 + Debian Linux 2.2 alpha
 + Debian Linux 2.2 alpha
 + Debian Linux 2.2 68k
 + Debian Linux 2.2 68k
 + Debian Linux 2.2
+ Debian Linux 2.2
+ Mandriva Linux Mandrake 7.2
+ Mandriva Linux Mandrake 7.2
+ Mandriva Linux Mandrake 7.1
+ Mandriva Linux Mandrake 7.1
+ Mandriva Linux Mandrake 7.0
+ Mandriva Linux Mandrake 7.0
+ Mandriva Linux Mandrake 6.1
+ Mandriva Linux Mandrake 6.0
+ Mandriva Linux Mandrake 6.0
Aladdin Enterprises Ghostscript 5.10 cl
+ Conectiva Linux 5.1
+ Conectiva Linux 5.0
+ Conectiva Linux 5.0
+ Conectiva Linux 4.2
+ Conectiva Linux 4.2
+ Conectiva Linux 4.1
+ Conectiva Linux 4.1
+ Conectiva Linux 4.0 es
 + Conectiva Linux 4.0 es
 + Conectiva Linux 4.0
+ Conectiva Linux 4.0
Aladdin Enterprises Ghostscript 4.3.2
Aladdin Enterprises Ghostscript 4.3
+ HP Secure OS software for Linux 1.0
+ RedHat Linux 5.2 sparc
 + RedHat Linux 5.2 sparc
 + RedHat Linux 5.2 i386
 + RedHat Linux 5.2 i386
 + RedHat Linux 5.2 alpha
 + RedHat Linux 5.2 alpha
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus