Vulnerabilities > CVE-2004-1717 - Remote Buffer Overflow vulnerability in GV Postscript and PDF Viewer

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

exploit available

NVD

Published: 2004-08-16

Updated: 2017-07-11

Summary

Multiple buffer overflows in the psscan function in ps.c for gv (ghostview) allow remote attackers to execute arbitrary code via a Postscript file with a long (1) BoundingBox, (2) comment, (3) Orientation, (4) PageOrder, or (5) Pages value.

Vulnerable Configurations

Part	Description	Count
Application	Gv GV GV 2.7.6 GV GV 2.7B1 GV GV 2.7B2 GV GV 2.7B3 GV GV 2.7B4 GV GV 2.7B5 GV GV 2.9.4 GV GV 3.0.0 GV GV 3.0.4 GV GV 3.1.4 GV GV 3.1.6 GV GV 3.2.4 GV GV 3.4.2 GV GV 3.4.3 GV GV 3.4.12 GV GV 3.5.2 GV GV 3.5.3 GV GV 3.5.8	18

Exploit-Db

description	GV PostScript Viewer Remote Buffer overflow Exploit (2). CVE-2004-1717. Remote exploit for linux platform
id	EDB-ID:400
last seen	2016-01-31
modified	2004-08-18
published	2004-08-18
reporter	infamous41md
source	https://www.exploit-db.com/download/400/
title	GV PostScript Viewer - Remote Buffer Overflow Exploit 2

description	GV PostScript Viewer Remote Buffer overflow Exploit. CVE-2004-1717. Remote exploit for linux platform
id	EDB-ID:390
last seen	2016-01-31
modified	2004-08-13
published	2004-08-13
reporter	infamous41md
source	https://www.exploit-db.com/download/390/
title	GV PostScript Viewer Remote Buffer Overflow Exploit

Statements

contributor	Mark J Cox
lastmodified	2006-08-30
organization	Red Hat
statement	This CVE is a duplicate (rediscovery) of CVE-2002-0838

Summary

Vulnerable Configurations

Exploit-Db

Statements

References