Vulnerability & Exploit Database

Displaying all 8 entries

Results for: CVE-2018-3986 Back to search

SUSE: CVE-2018-19518: SUSE Linux Security Advisory Vulnerability

  • Severity: 9
  • Published: November 25, 2018

University of Washington IMAP Toolkit 2007f on UNIX, as used in imap_open() in PHP and other products, launches an rsh command (by means of the imap_rimap function in c-client/imap4r1.c and the tcp_aopen function in osdep/unix/tcp_unix.c) without preventing argument injection, which might allow remote attackers to execute arbitrary OS co...

SUSE: CVE-2017-11714: SUSE Linux Security Advisory Vulnerability

  • Severity: 7
  • Published: July 28, 2017

psi/ztoken.c in Artifex Ghostscript 9.21 mishandles references to the scanner state structure, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted PostScript document, related to an out-of-bounds read in the igc_reloc_struct_ptr function in psi/igc.c.

SUSE: CVE-2017-9835: SUSE Linux Security Advisory Vulnerability

  • Severity: 7
  • Published: July 26, 2017

The gs_alloc_ref_array function in psi/ialloc.c in Artifex Ghostscript 9.21 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted PostScript document. This is related to a lack of an integer overflow check in base/gsalloc.c.

SUSE: CVE-2017-9739: SUSE Linux Security Advisory Vulnerability

  • Severity: 7
  • Published: July 26, 2017

The Ins_JMPR function in base/ttinterp.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted document.

SUSE: CVE-2017-9727: SUSE Linux Security Advisory Vulnerability

  • Severity: 7
  • Published: July 26, 2017

The gx_ttfReader__Read function in base/gxttfb.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted document.

SUSE: CVE-2017-9726: SUSE Linux Security Advisory Vulnerability

  • Severity: 7
  • Published: July 26, 2017

The Ins_MDRP function in base/ttinterp.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted document.

SUSE: CVE-2017-9612: SUSE Linux Security Advisory Vulnerability

  • Severity: 7
  • Published: July 26, 2017

The Ins_IP function in base/ttinterp.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly have unspecified other impact via a crafted document.

SUSE: CVE-2017-9611: SUSE Linux Security Advisory Vulnerability

  • Severity: 7
  • Published: July 26, 2017

The Ins_MIRP function in base/ttinterp.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted document.