本ページは aladdin_enterprises ghostscript に影響する公開済み CVE(NVD の CPE 経由で関連付け)を列挙します。各行に深刻度指標・概要・公開日が含まれます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2004-0967 | The (1) pj-gs.sh, (2) ps2epsi, (3) pv.sh, and (4) sysvlp.sh scripts in the ESP Ghostscript (espgs) package in Trustix Secure Linux 1.5 through 2.1, and other operating systems, allow local users to overwrite files via a symlink attack on temporary files. | [email protected] | 7.2 | 0.47% | 2005-02-09 | 2026-04-16 |
| CVE-2002-0363 | ghostscript before 6.53 allows attackers to execute arbitrary commands by using .locksafe or .setsafe to reset the current pagedevice. | [email protected] | 7.5 | 2.11% | 2002-05-29 | 2026-06-16 |
| CVE-2001-1353 | ghostscript before 6.51 allows local users to read and write arbitrary files as the 'lp' user via the file operator, even with -dSAFER enabled. | [email protected] | 2.6 | 0.32% | 2001-09-18 | 2026-06-16 |
| CVE-2000-1163 | ghostscript before 5.10-16 uses an empty LD_RUN_PATH environmental variable to find libraries in the current directory, which could allow local users to execute commands as other users by placing a Trojan horse library into a directory from which another user executes ghostscript. | [email protected] | 4.6 | 0.40% | 2001-01-09 | 2026-06-16 |
| CVE-2000-1162 | ghostscript before 5.10-16 allows local users to overwrite files of other users via a symlink attack. | [email protected] | 3.7 | 0.32% | 2001-01-09 | 2026-06-16 |
| CVE-1999-0155 | The ghostscript command with the -dSAFER option allows remote attackers to execute commands. | [email protected] | 7.5 | 2.79% | 1995-08-31 | 2026-06-16 |