Ghostscript 'jbig2dec' JBIG2 Processing Buffer Overflow Vulnerability

Ghostscript is prone to a remote buffer-overflow vulnerability because it fails to properly bounds-check user-supplied input before copying it into a finite-sized buffer.

Exploiting this issue may allow remote attackers to execute arbitrary code in the context of the affected application. Failed exploit attempts will likely cause denial-of-service conditions.

Ghostscript 8.64 is vulnerable; other versions may also be affected.


 

Privacy Statement
Copyright 2010, SecurityFocus