FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-19 19:12:13 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
27a70a01-5f6c-11da-8d54-000cf18bbe54	ghostscript -- insecure temporary file creation vulnerability Ghostscript is affected by an insecure temporary file creation vulnerability. This issue is likely due to a design error that causes the application to fail to verify the existence of a file before writing to it. An attacker may leverage this issue to overwrite arbitrary files with the privileges of an unsuspecting user that activates the vulnerable application. Reportedly this issue is unlikely to facilitate privilege escalation. Discovery 2004-10-19 Entry 2005-11-27 ghostscript-gnu ghostscript-gnu-nox11 < 7.07_14 ghostscript-afpl ghostscript-afpl-nox11 < 8.53_1 11285 CVE-2004-0967

VuXML ID

Description

27a70a01-5f6c-11da-8d54-000cf18bbe54

ghostscript -- insecure temporary file creation vulnerability

Ghostscript is affected by an insecure temporary file creation vulnerability. This issue is likely due to a design error that causes the application to fail to verify the existence of a file before writing to it.

An attacker may leverage this issue to overwrite arbitrary files with the privileges of an unsuspecting user that activates the vulnerable application. Reportedly this issue is unlikely to facilitate privilege escalation.

Discovery 2004-10-19
Entry 2005-11-27
ghostscript-gnu
ghostscript-gnu-nox11

< 7.07_14

ghostscript-afpl
ghostscript-afpl-nox11

< 8.53_1

11285
CVE-2004-0967