Main Vulnerability Database Vulnerabilities #VU14564

Type confusion in Ghostscript - CVE-2018-15910

Published: August 30, 2018 / Updated: April 22, 2020

Vulnerability identifier: #VU14564

CSH Severity: High

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber

CVE-ID: CVE-2018-15910

CWE-ID: CWE-843

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Artifex Software, Inc.

Affected software:
Ghostscript

Detailed vulnerability description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to the bypass of the -dSAFER option. A remote unauthenticated attacker can submit a specially crafted PostScript file, trigger type confusion in LockDistillerParams parameter and execute arbitrary code with elevated privileges.

Successful exploitation of the vulnerability may result in system compromise.

How to mitigate CVE-2018-15910

Install update from vendor's website.

Sources

http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=c3476dde7743761a4e1d39a631716199b696b880

Type confusion in Ghostscript - CVE-2018-15910

Detailed vulnerability description

How to mitigate CVE-2018-15910

Sources

Please verify you're human