CVE-2004-0967

The (1) pj-gs.sh, (2) ps2epsi, (3) pv.sh, and (4) sysvlp.sh scripts in the ESP Ghostscript (espgs) package in Trustix Secure Linux 1.5 through 2.1, and other operating systems, allow local users to overwrite files via a symlink attack on temporary files.

Published: 2005-02-09 Last update: 2026-04-16 Assigner: [email protected] Source: [email protected]
NVD Status:ModifiedCVE State: published
View at NVD, CVE.org, EUVD

CVE-2004-0967 is rated Moderate Risk (42.2/100): CVSS High severity, with low exploitation likelihood (EPSS 0.47%). Review affected assets and schedule remediation.

Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.

Exploit prediction scoring system (EPSS) score for CVE-2004-0967

EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).

# Date Old EPSS score New EPSS score Delta (New - Old)
1 2026-06-15 0.04% 0.47% +0.43%
2 2023-03-07 1.55% 0.04% -1.50%
3 2022-02-04 1.55%

Full EPSS history (3 records total)

Common vulnerability scoring system (CVSS) metrics for CVE-2004-0967

CVSS metrics for this CVE.

Base score Version Severity Vector Exploitability Impact Score source
7.2 2.0 HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C Click to expand
Access vector (AV:L)
Requires local access to the target system.
Access complexity (AC:L)
Exploitation conditions are straightforward and predictable.
Authentication (AU:N)
No authentication is required.
Confidentiality impact (C:C)
Complete confidentiality impact.
Integrity impact (I:C)
Complete integrity impact.
Availability impact (A:C)
Complete availability impact.
 3.9 10.0 [email protected]

Weakness enumeration for CVE-2004-0967

OS Trackers for CVE-2004-0967

vendor priority summary link
redhat low https://access.redhat.com/security/cve/CVE-2004-0967
ubuntu medium CVE-2004-0967 medium priority: Ubuntu including 1 source packages (gs-common), 4 status rows across 4 suites (dapper, edgy, feisty, upstream): released 3, needs-triage 1. https://ubuntu.com/security/CVE-2004-0967

Vendor comments (NVD) for CVE-2004-0967

  • Red Hat (2007-09-07T00:00:00)

    Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=140074 The Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw. More information regarding issue severity can be found here: http://www.redhat.com/security/updates/classification/ The risks associated with fixing this bug are greater than the low severity security risk. We therefore currently have no plans to fix this flaw in Red Hat Enterprise Linux 2.1 which is in maintenance mode.

Affected software / configurations for CVE-2004-0967

Vendor Product Version Raw CPE
aladdin_enterprises ghostscript 4.3 cpe:2.3:a:aladdin_enterprises:ghostscript:4.3:*:*:*:*:*:*:*
aladdin_enterprises ghostscript 4.3.2 cpe:2.3:a:aladdin_enterprises:ghostscript:4.3.2:*:*:*:*:*:*:*
aladdin_enterprises ghostscript 5.10.10 cpe:2.3:a:aladdin_enterprises:ghostscript:5.10.10:*:*:*:*:*:*:*
aladdin_enterprises ghostscript 5.10.10 cpe:2.3:a:aladdin_enterprises:ghostscript:5.10.10:*:mdk:*:*:*:*:*
aladdin_enterprises ghostscript 5.10.10_1 cpe:2.3:a:aladdin_enterprises:ghostscript:5.10.10_1:*:*:*:*:*:*:*
aladdin_enterprises ghostscript 5.10.10_1 cpe:2.3:a:aladdin_enterprises:ghostscript:5.10.10_1:*:mdk:*:*:*:*:*
aladdin_enterprises ghostscript 5.10.12cl cpe:2.3:a:aladdin_enterprises:ghostscript:5.10.12cl:*:*:*:*:*:*:*
aladdin_enterprises ghostscript 5.10.15 cpe:2.3:a:aladdin_enterprises:ghostscript:5.10.15:*:*:*:*:*:*:*
aladdin_enterprises ghostscript 5.10.16 cpe:2.3:a:aladdin_enterprises:ghostscript:5.10.16:*:*:*:*:*:*:*
aladdin_enterprises ghostscript 5.10cl cpe:2.3:a:aladdin_enterprises:ghostscript:5.10cl:*:*:*:*:*:*:*
aladdin_enterprises ghostscript 5.50 cpe:2.3:a:aladdin_enterprises:ghostscript:5.50:*:*:*:*:*:*:*
aladdin_enterprises ghostscript 5.50.8 cpe:2.3:a:aladdin_enterprises:ghostscript:5.50.8:*:*:*:*:*:*:*
aladdin_enterprises ghostscript 5.50.8_7 cpe:2.3:a:aladdin_enterprises:ghostscript:5.50.8_7:*:*:*:*:*:*:*
aladdin_enterprises ghostscript 6.51 cpe:2.3:a:aladdin_enterprises:ghostscript:6.51:*:*:*:*:*:*:*
aladdin_enterprises ghostscript 6.52 cpe:2.3:a:aladdin_enterprises:ghostscript:6.52:*:*:*:*:*:*:*
aladdin_enterprises ghostscript 6.53 cpe:2.3:a:aladdin_enterprises:ghostscript:6.53:*:*:*:*:*:*:*
aladdin_enterprises ghostscript 7.0.4 cpe:2.3:a:aladdin_enterprises:ghostscript:7.0.4:*:*:*:*:*:*:*
aladdin_enterprises ghostscript 7.0.5 cpe:2.3:a:aladdin_enterprises:ghostscript:7.0.5:*:*:*:*:*:*:*
aladdin_enterprises ghostscript 7.0.6 cpe:2.3:a:aladdin_enterprises:ghostscript:7.0.6:*:*:*:*:*:*:*
aladdin_enterprises ghostscript 7.0.7 cpe:2.3:a:aladdin_enterprises:ghostscript:7.0.7:*:*:*:*:*:*:*

References for CVE-2004-0967

cvelogic Threat Intelligence