Vulnerability feed

Vulnerability

CVE-2018-16509

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2018-16509
Description:: An issue was discovered in Artifex Ghostscript before 9.24. Incorrect "restoration of privilege" checking during handling of /invalidaccess exceptions could be used by attackers able to supply crafted PostScript to execute code using the "pipe" instruction.
Last updated date:: 10/03/2019

Reports

alt

ACTIVELY EXPLOITED

Type:: exploitation
Confidence:: HIGH
Date of publishing:: 05/17/2024
Reference url to background: https://1665891.fs1.hubspotusercontent-na1.net/hubfs/1665891/Threat%20reports/AquaSecurity_Kinsing_Demystified_Technical_Guide.pdf

Type:: exploit
Confidence:: HIGH
Date of publishing:: 10/15/2018
Reference url to background: https://github.com/farisv/PIL-RCE-Ghostscript-CVE-2018-16509

Type:: exploit
Confidence:: HIGH
Date of publishing:: 11/17/2018
Reference url to background: https://github.com/knqyf263/CVE-2018-16509

Type:: exploit
Confidence:: HIGH
Date of publishing:: 07/09/2019
Reference url to background: https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/fileformat/ghostscript_failed_restore.rb

Type:: exploit
Confidence:: HIGH
Date of publishing:: 10/03/2019
Reference url to background: http://seclists.org/oss-sec/2018/q3/142

Type:: exploit
Confidence:: HIGH
Date of publishing:: 10/03/2019
Reference url to background: https://www.exploit-db.com/exploits/45369/

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/26/2020
Reference url to background: https://medium.com/@NumbShiva/imagemagic-rce-f364a9f50a14

Vulnerability Feed Contributors About Blog

@inTheWild

©2024 |