CVE-2008-0411: Buffer Overflow
First published: Thu Feb 28 2008(Updated: )
Stack-based buffer overflow in the zseticcspace function in zicc.c in Ghostscript 8.61 and earlier allows remote attackers to execute arbitrary code via a postscript (.ps) file containing a long Range array in a .seticcspace operator.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Mandrake Linux | =2007 | |
| Mandrake Linux | =2007.0_x86_64 | |
| Mandrake Linux | =2007.1 | |
| Mandrake Linux | =2007.1 | |
| Mandrake Linux | =2008.0 | |
| Mandrake Linux | =2008.0 | |
| Mandriva Linux Corporate Server | =3.0 | |
| Mandriva Linux Corporate Server | =4.0 | |
| Mandrakesoft Corporate Server | =3.0_x86_64 | |
| Mandrakesoft Corporate Server | =4.0_x86_64 | |
| Red Hat Desktop-file-utils | =3.0 | |
| Red Hat Desktop-file-utils | =4.0 | |
| Red Hat Enterprise Linux | =5 | |
| Red Hat Enterprise Linux | =as_3 | |
| Red Hat Enterprise Linux | =as_4 | |
| Red Hat Enterprise Linux | =es_3 | |
| Red Hat Enterprise Linux | =es_4 | |
| Red Hat Enterprise Linux | =ws_3 | |
| Red Hat Enterprise Linux | =ws_4 | |
| Red Hat Enterprise Linux Desktop | =5 | |
| Red Hat Enterprise Linux Workstation | =5 | |
| Rpath Linux | =1 | |
| SUSE Linux Enterprise Point of Service | =9 | |
| SUSE Linux | =10.2 | |
| SUSE Linux | =10.3 | |
| SUSE Linux | =9.0 | |
| SUSE Linux | =10-sp1 | |
| SUSE Linux | =10-sp1 | |
| SUSE Linux | =10.1 | |
| SUSE Linux | =10.1 | |
| SUSE Linux | =10.1 | |
| SUSE Open Enterprise Server | =0 | |
| Ghostscript | <=8.61 | |
| Ghostscript | =0 | |
| Ghostscript | =8.0.1 | |
| Ghostscript | =8.15 | |
| All of | ||
| Any of | ||
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Mandrake Linux | =2007 | |
| Mandrake Linux | =2007.0_x86_64 | |
| Mandrake Linux | =2007.1 | |
| Mandrake Linux | =2007.1 | |
| Mandrake Linux | =2008.0 | |
| Mandrake Linux | =2008.0 | |
| Mandriva Linux Corporate Server | =3.0 | |
| Mandriva Linux Corporate Server | =4.0 | |
| Mandrakesoft Corporate Server | =3.0_x86_64 | |
| Mandrakesoft Corporate Server | =4.0_x86_64 | |
| Red Hat Desktop-file-utils | =3.0 | |
| Red Hat Desktop-file-utils | =4.0 | |
| Red Hat Enterprise Linux | =5 | |
| Red Hat Enterprise Linux | =as_3 | |
| Red Hat Enterprise Linux | =as_4 | |
| Red Hat Enterprise Linux | =es_3 | |
| Red Hat Enterprise Linux | =es_4 | |
| Red Hat Enterprise Linux | =ws_3 | |
| Red Hat Enterprise Linux | =ws_4 | |
| Red Hat Enterprise Linux Desktop | =5 | |
| Red Hat Enterprise Linux Workstation | =5 | |
| Rpath Linux | =1 | |
| SUSE Linux Enterprise Point of Service | =9 | |
| SUSE Linux | =10.2 | |
| SUSE Linux | =10.3 | |
| SUSE Linux | =9.0 | |
| SUSE Linux | =10-sp1 | |
| SUSE Linux | =10-sp1 | |
| SUSE Linux | =10.1 | |
| SUSE Linux | =10.1 | |
| SUSE Linux | =10.1 | |
| SUSE Open Enterprise Server | =0 | |
| Ghostscript | <=8.61 | |
| All of | ||
| Any of | ||
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =3.1 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Debian | =4.0 | |
| Any of | ||
| Ghostscript | =0 | |
| Ghostscript | =8.0.1 | |
| Ghostscript | =8.15 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://scary.beasts.org/security/CESA-2008-001.html
- http://www.debian.org/security/2008/dsa-1510
- http://www.redhat.com/support/errata/RHSA-2008-0155.html
- http://www.securityfocus.com/bid/28017
- https://issues.rpath.com/browse/RPL-2217
- http://www.mandriva.com/security/advisories?name=MDVSA-2008:055
- http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00009.html
- http://secunia.com/advisories/29101
- http://secunia.com/advisories/29147
- http://secunia.com/advisories/29169
- http://wiki.rpath.com/Advisories:rPSA-2008-0082
- https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00085.html
- http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.370633
- http://www.securitytracker.com/id?1019511
- http://secunia.com/advisories/29103
- http://secunia.com/advisories/29112
- http://secunia.com/advisories/29135
- http://secunia.com/advisories/29196
- http://secunia.com/advisories/29154
- http://www.gentoo.org/security/en/glsa/glsa-200803-14.xml
- http://secunia.com/advisories/29314
- http://www.ubuntu.com/usn/usn-599-1
- http://secunia.com/advisories/29768
- http://www.vupen.com/english/advisories/2008/0693/references
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9557
- http://www.securityfocus.com/archive/1/488946/100/0/threaded
- http://www.securityfocus.com/archive/1/488932/100/0/threaded
Frequently Asked Questions
What is the severity of CVE-2008-0411?
CVE-2008-0411 has been classified as a critical vulnerability, allowing for remote code execution through specially crafted PostScript files.
How do I fix CVE-2008-0411?
To fix CVE-2008-0411, update Ghostscript to a version later than 8.61, which addresses this buffer overflow issue.
Which software is affected by CVE-2008-0411?
CVE-2008-0411 affects Ghostscript versions 8.61 and earlier, potentially impacting various distributions like Debian and Mandriva.
Can CVE-2008-0411 be exploited remotely?
Yes, CVE-2008-0411 can be exploited remotely by leveraging a malicious PostScript file.
What type of vulnerability is CVE-2008-0411?
CVE-2008-0411 is a stack-based buffer overflow vulnerability.
- collector/nvd-historical
- agent/type
- agent/weakness
- agent/references
- agent/remedy
- agent/severity
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/author
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- vendor/debian
- canonical/debian
- version/debian/3.1
- version/debian/4.0
- vendor/mandrakesoft
- canonical/mandrake linux
- version/mandrake linux/2007
- version/mandrake linux/2007.0_x86_64
- version/mandrake linux/2007.1
- version/mandrake linux/2008.0
- canonical/mandriva linux corporate server
- version/mandriva linux corporate server/3.0
- version/mandriva linux corporate server/4.0
- canonical/mandrakesoft corporate server
- version/mandrakesoft corporate server/3.0_x86_64
- version/mandrakesoft corporate server/4.0_x86_64
- vendor/redhat
- canonical/red hat desktop-file-utils
- version/red hat desktop-file-utils/3.0
- version/red hat desktop-file-utils/4.0
- canonical/red hat enterprise linux
- version/red hat enterprise linux/5
- version/red hat enterprise linux/as_3
- version/red hat enterprise linux/as_4
- version/red hat enterprise linux/es_3
- version/red hat enterprise linux/es_4
- version/red hat enterprise linux/ws_3
- version/red hat enterprise linux/ws_4
- canonical/red hat enterprise linux desktop
- version/red hat enterprise linux desktop/5
- canonical/red hat enterprise linux workstation
- version/red hat enterprise linux workstation/5
- vendor/rpath
- canonical/rpath linux
- version/rpath linux/1
- vendor/suse
- canonical/suse linux enterprise point of service
- version/suse linux enterprise point of service/9
- canonical/suse linux
- version/suse linux/10.2
- version/suse linux/10.3
- version/suse linux/9.0
- version/suse linux/10-sp1
- version/suse linux/10.1
- canonical/suse open enterprise server
- version/suse open enterprise server/0
- vendor/ghostscript
- canonical/ghostscript
- version/ghostscript/8.61
- version/ghostscript/0
- version/ghostscript/8.0.1
- version/ghostscript/8.15