Vulnerabilities > Aladdin Enterprises > Ghostscript > 5.50
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-02-09 | CVE-2004-0967 | Link Following vulnerability in Aladdin Enterprises Ghostscript The (1) pj-gs.sh, (2) ps2epsi, (3) pv.sh, and (4) sysvlp.sh scripts in the ESP Ghostscript (espgs) package in Trustix Secure Linux 1.5 through 2.1, and other operating systems, allow local users to overwrite files via a symlink attack on temporary files. | 7.2 |
2001-01-09 | CVE-2000-1163 | Unspecified vulnerability in Aladdin Enterprises Ghostscript ghostscript before 5.10-16 uses an empty LD_RUN_PATH environmental variable to find libraries in the current directory, which could allow local users to execute commands as other users by placing a Trojan horse library into a directory from which another user executes ghostscript. | 4.6 |
2001-01-09 | CVE-2000-1162 | Unspecified vulnerability in Aladdin Enterprises Ghostscript ghostscript before 5.10-16 allows local users to overwrite files of other users via a symlink attack. | 3.7 |