Executive Summary

Informations
NameCVE-2018-19476First vendor Publication2018-11-23
VendorCveLast vendor Modification2019-04-25

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:P/I:P/A:P)
Cvss Base Score6.8Attack RangeNetwork
Cvss Impact Score6.4Attack ComplexityMedium
Cvss Expoit Score8.6AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

psi/zicc.c in Artifex Ghostscript before 9.26 allows remote attackers to bypass intended access restrictions because of a setcolorspace type confusion.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19476

CWE : Common Weakness Enumeration

%idName
100 %CWE-704Incorrect Type Conversion or Cast

CPE : Common Platform Enumeration

TypeDescriptionCount
Application15
Application1
Os4
Os2
Os1
Os2
Os1
Os1
Os1
Os1

Nessus® Vulnerability Scanner

DateDescription
2018-11-29Name : The remote Debian host is missing a security update.
File : debian_DLA-1598.nasl - Type : ACT_GATHER_INFO
2018-11-29Name : The remote Debian host is missing a security-related update.
File : debian_DSA-4346.nasl - Type : ACT_GATHER_INFO
2018-11-28Name : The remote Windows host contains a library that is affected by multiple vulne...
File : ghostscript_9_26.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

SourceUrl
BID http://www.securityfocus.com/bid/106154
DEBIAN https://www.debian.org/security/2018/dsa-4346
MISC http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=67d760ab775dae4efe803b5...
http://git.ghostscript.com/?p=ghostpdl.git;h=434753adbe8be5534bfb9b7d91746023...
https://bugs.ghostscript.com/show_bug.cgi?id=700169
https://semmle.com/news/semmle-discovers-severe-vulnerability-ghostscript-pos...
https://www.ghostscript.com/doc/9.26/History9.htm#Version9.26
MLIST https://lists.debian.org/debian-lts-announce/2018/11/msg00036.html
REDHAT https://access.redhat.com/errata/RHBA-2019:0327
https://access.redhat.com/errata/RHSA-2019:0229
UBUNTU https://usn.ubuntu.com/3831-1/

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
10
DateInformations
2019-04-25 17:19:07
  • Multiple Updates
2019-04-24 13:19:12
  • Multiple Updates
2019-03-05 21:19:20
  • Multiple Updates
2019-02-01 17:18:56
  • Multiple Updates
2018-12-21 05:18:15
  • Multiple Updates
2018-12-19 17:19:04
  • Multiple Updates
2018-12-12 17:19:33
  • Multiple Updates
2018-11-30 17:19:03
  • Multiple Updates
2018-11-29 17:19:37
  • Multiple Updates
2018-11-28 17:18:59
  • Multiple Updates
2018-11-23 09:20:06
  • First insertion