Back to search
CVE-2006-5864
Published: Nov 11, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
Stack-based buffer overflow in the ps_gettext function in ps.c for GNU gv 3.6.2, and possibly earlier versions, allows user-assisted attackers to execute arbitrary code via a PostScript (PS) file with certain headers that contain long comments, as demonstrated using the (1) DocumentMedia, (2) DocumentPaperSizes, and possibly (3) PageMedia and (4) PaperSize headers. NOTE: this issue can be exploited through other products that use gv such as evince.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
gnu-gv-buffer-overflow(30153)
vdb-entry
x_refsource_XF
DSA-1214
vendor-advisory
x_refsource_DEBIAN
23018
third-party-advisory
x_refsource_SECUNIA
ADV-2006-4424
vdb-entry
x_refsource_VUPEN
22932
third-party-advisory
x_refsource_SECUNIA
2858
exploit
x_refsource_EXPLOIT-DB
23353
third-party-advisory
x_refsource_SECUNIA
23306
third-party-advisory
x_refsource_SECUNIA
23266
third-party-advisory
x_refsource_SECUNIA
23579
third-party-advisory
x_refsource_SECUNIA
24787
third-party-advisory
x_refsource_SECUNIA
SUSE-SR:2006:026
vendor-advisory
x_refsource_SUSE
SUSE-SR:2006:028
vendor-advisory
x_refsource_SUSE
23409
third-party-advisory
x_refsource_SECUNIA
GLSA-200704-06
vendor-advisory
x_refsource_GENTOO
GLSA-200703-24
vendor-advisory
x_refsource_GENTOO
USN-390-2
vendor-advisory
x_refsource_UBUNTU
23335
third-party-advisory
x_refsource_SECUNIA
ADV-2006-4747
vdb-entry
x_refsource_VUPEN
VU#352825
third-party-advisory
x_refsource_CERT-VN
20061109 GNU gv Stack Overflow Vulnerability
mailing-list
x_refsource_BUGTRAQ
23111
third-party-advisory
x_refsource_SECUNIA
23183
third-party-advisory
x_refsource_SECUNIA
DSA-1243
vendor-advisory
x_refsource_DEBIAN
20978
vdb-entry
x_refsource_BID
GLSA-200611-20
vendor-advisory
x_refsource_GENTOO
20061112 Re: GNU gv Stack Overflow Vulnerability
mailing-list
x_refsource_BUGTRAQ
MDKSA-2006:214
vendor-advisory
x_refsource_MANDRIVA
23006
third-party-advisory
x_refsource_SECUNIA
22787
third-party-advisory
x_refsource_SECUNIA
https://issues.rpath.com/browse/RPL-850
x_refsource_CONFIRM
evince-postscript-bo(30555)
vdb-entry
x_refsource_XF
23118
third-party-advisory
x_refsource_SECUNIA
24649
third-party-advisory
x_refsource_SECUNIA
SUSE-SR:2006:029
vendor-advisory
x_refsource_SUSE
20061128 evince buffer overflow exploit (gv)
mailing-list
x_refsource_BUGTRAQ
MDKSA-2006:229
vendor-advisory
x_refsource_MANDRIVA
USN-390-3
vendor-advisory
x_refsource_UBUNTU
USN-390-1
vendor-advisory
x_refsource_UBUNTU
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now