Security Advisory

CVE-2017-8291

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-04-27 01:41:00

Last updated 2025-10-21 23:55:41

Assigner mitre

State PUBLISHED

Description

Artifex Ghostscript through 2017-04-26 allows -dSAFER bypass and remote command execution via .rsdparams type confusion with a "/OutputFile (%pipe%" substring in a crafted .eps document that is an input to the gs program, as exploited in the wild in April 2017.

← Browse all CVEs View on cve.org ↗