#VU20468 Permissions, Privileges, and Access Controls in Ghostscript - CVE-2019-14811

Cybersecurity Help s.r.o.

Published: 2019-08-29 | Updated: 2022-07-18

Vulnerability identifier: #VU20468

Vulnerability risk: Low

CVSSv4.0: 0.4 [CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2019-14811

CWE-ID: CWE-264

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Ghostscript
Universal components / Libraries / Libraries used by multiple products

Vendor: Artifex Software, Inc.

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to unrestricted access to .forceput in .pdf_hook_DSC_Creator. A remote attacker can create a specially crafted PDF file, trick the victim to open it and gain access to arbitrary files on the system.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Ghostscript: 9.00 - 9.27

External links
https://git.ghostscript.com/?p=ghostpdl.git;h=885444fcbe10dc42787ecb76686c8ee4dd33bf33

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Gentoo update for GPL Ghostscript

Arch Linux update for ghostscript

OpenSUSE Linux update for ghostscript

Debian update for ghostscript

Red Hat update for ghostscript

Ubuntu update for Ghostscript

Permissions, Privileges, and Access Controls in ghostscript (Alpine package)

Security restrictions bypass in Ghostscript