VDB
CVE-2008-6679
CVE-2008-6679
PUBLISHED
CVSS 5 MEDIUM
Buffer overflow in the BaseFont writer module in Ghostscript 8.62, and possibly other versions, allows remote attackers to cause a denial of service (ps2pdf crash) and possibly execute arbitrary code via a crafted Postscript file.
EPSS 4.65% · 89.5th percentile
Risk Scores
CVSS v2.0
5
EPSS Score
4.65%
89.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| ghostscript | ghostscript | 8.62 |
| n/a | n/a | n/a |
Timeline
- Apr 8, 2009 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 17, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 1, 2023 EPSS Score
- May 24, 2023 EPSS Score
- Jul 12, 2023 EPSS Score
- Sep 6, 2023 EPSS Score
References
- RHSA-2009:0421 vendor-advisory
- oval:org.mitre.oval:def:10019 vdb
- FEDORA-2009-3709 vendor-advisory
- 262288 vendor-advisory
- 20090417 rPSA-2009-0060-1 ghostscript mailing-list
- 34729 third-party-advisory
- http://bugs.ghostscript.com/show_bug.cgi?id=690211 url
- SUSE-SR:2009:011 vendor-advisory
- MDVSA-2009:095 vendor-advisory
- FEDORA-2009-3710 vendor-advisory
- 34732 third-party-advisory
- 35569 third-party-advisory
- ADV-2009-1708 vdb
- 35559 third-party-advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=493445 url
- 35416 third-party-advisory
- http://wiki.rpath.com/Advisories:rPSA-2009-0060 url
- USN-757-1 vendor-advisory
- [oss-security] 20090401 CVE request -- ghostscript mailing-list
- 34667 third-party-advisory
…and 2 more