ID de Prueba:	1.3.6.1.4.1.25623.1.0.124511
Categoría:	General
Título:	pdfforge PDFCreator < 5.1.2 Permission Validation Vulnerability
Resumen:	PDFCreator < 5.1.2 contains a vulnerable version of Ghostscript
Descripción:	Summary: PDFCreator < 5.1.2 contains a vulnerable version of Ghostscript Vulnerability Insight: It was discovered that Ghostscript, which is included in PDFCreator, does not properly handle permission validation for pipe devices. This could result in the execution of arbitrary commands if malformed document files are processed. Vulnerability Impact: Successful exploitation could allow a remote attacker to cause a denial of service or escalate privileges. Affected Software/OS: PDFCreator before version 5.1.2 Solution: Update to version 5.1.2 or later. CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2023-36664 Debian Security Information: DSA-5446 (Google Search) https://www.debian.org/security/2023/dsa-5446 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2ICXN5VPF3WJCYKMPSYER5KHTPJXSTJZ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5EWMEK2UPCUU3ZLL7VASE5CEHDQY4VKV/ https://security.gentoo.org/glsa/202309-03 https://bugs.ghostscript.com/show_bug.cgi?id=706761 https://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=0974e4f2ac0005d3731e0b5c13ebc7e965540f4d https://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=505eab7782b429017eb434b2b95120855f2b0e3c
Copyright	Copyright (C) 2024 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.