National Vulnerability Database (NVD) National Vulnerability Database (CVE-2009-0584)

National Cyber Awareness System

Vulnerability Summary for CVE-2009-0584

Original release date:03/23/2009

Last revised:08/21/2010

Source: US-CERT/NIST

Overview

icc.c in the International Color Consortium (ICC) Format library (aka icclib), as used in Ghostscript 8.64 and earlier and Argyll Color Management System (CMS) 1.0.3 and earlier, allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code by using a device file for processing a crafted image file associated with large integer values for certain sizes, related to an ICC profile in a (1) PostScript or (2) PDF file with embedded images.

Impact

CVSS Severity (version 2.0):

CVSS v2 Base Score:9.3 (HIGH) (AV:N/AC:M/Au:N/C:C/I:C/A:C) (legend)

Impact Subscore: 10.0

Exploitability Subscore: 8.6

CVSS Version 2 Metrics:

Access Vector: Network exploitable; Victim must voluntarily interact with attack mechanism

Access Complexity: Medium

Authentication: Not required to exploit

Impact Type:Allows unauthorized disclosure of information; Allows unauthorized modification; Allows disruption of service

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

US Government Resource: ESB-2009.0259

Name: ESB-2009.0259

Hyperlink:http://www.auscert.org.au/render.html?it=10666

External Source: FEDORA

Name: FEDORA-2009-3031

Hyperlink:https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00916.html

External Source: FEDORA

Name: FEDORA-2009-3011

Hyperlink:https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00887.html

External Source: FEDORA

Name: FEDORA-2009-2885

Type: Advisory

Hyperlink:https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00772.html

External Source: FEDORA

Name: FEDORA-2009-2883

Type: Advisory

Hyperlink:https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00770.html

External Source: CONFIRM

Name: https://issues.rpath.com/browse/RPL-2991

Hyperlink:https://issues.rpath.com/browse/RPL-2991

External Source: CONFIRM

Name: https://bugzilla.redhat.com/show_bug.cgi?id=487744

Hyperlink:https://bugzilla.redhat.com/show_bug.cgi?id=487744

External Source: XF

Name: ghostscript-icclib-bo(49327)

Hyperlink:http://xforce.iss.net/xforce/xfdb/49327

External Source: VUPEN

Name: ADV-2009-1708

Hyperlink:http://www.vupen.com/english/advisories/2009/1708

External Source: VUPEN

Name: ADV-2009-0816

Type: Advisory

Hyperlink:http://www.vupen.com/english/advisories/2009/0816

External Source: VUPEN

Name: ADV-2009-0777

Type: Advisory

Hyperlink:http://www.vupen.com/english/advisories/2009/0777

External Source: VUPEN

Name: ADV-2009-0776

Type: Advisory

Hyperlink:http://www.vupen.com/english/advisories/2009/0776

External Source: UBUNTU

Name: USN-757-1

Hyperlink:http://www.ubuntulinux.org/support/documentation/usn/usn-757-1

External Source: UBUNTU

Name: USN-743-1

Hyperlink:http://www.ubuntu.com/usn/USN-743-1

External Source: BID

Name: 34184

Hyperlink:http://www.securityfocus.com/bid/34184

External Source: BUGTRAQ

Name: 20090319 rPSA-2009-0050-1 ghostscript

Hyperlink:http://www.securityfocus.com/archive/1/archive/1/501994/100/0/threaded

External Source: REDHAT

Name: RHSA-2009:0345

Type: Advisory

Hyperlink:http://www.redhat.com/support/errata/RHSA-2009-0345.html

External Source: MANDRIVA

Name: MDVSA-2009:096

Hyperlink:http://www.mandriva.com/security/advisories?name=MDVSA-2009:096

External Source: MANDRIVA

Name: MDVSA-2009:095

Hyperlink:http://www.mandriva.com/security/advisories?name=MDVSA-2009:095

External Source: GENTOO

Name: GLSA-200903-37

Hyperlink:http://www.gentoo.org/security/en/glsa/glsa-200903-37.xml

External Source: DEBIAN

Name: DSA-1746

Hyperlink:http://www.debian.org/security/2009/dsa-1746

External Source: CONFIRM

Name: http://wiki.rpath.com/wiki/Advisories:rPSA-2009-0050

Hyperlink:http://wiki.rpath.com/wiki/Advisories:rPSA-2009-0050

External Source: CONFIRM

Name: http://support.avaya.com/elmodocs2/security/ASA-2009-098.htm

Hyperlink:http://support.avaya.com/elmodocs2/security/ASA-2009-098.htm

External Source: SUNALERT

Name: 262288

Hyperlink:http://sunsolve.sun.com/search/document.do?assetkey=1-26-262288-1

External Source: SECTRACK

Name: 1021868

Hyperlink:http://securitytracker.com/id?1021868

External Source: SECUNIA

Name: 35569

Hyperlink:http://secunia.com/advisories/35569

External Source: SECUNIA

Name: 35559

Hyperlink:http://secunia.com/advisories/35559

External Source: SECUNIA

Name: 34729

Hyperlink:http://secunia.com/advisories/34729

External Source: SECUNIA

Name: 34469

Hyperlink:http://secunia.com/advisories/34469

External Source: SECUNIA

Name: 34443

Hyperlink:http://secunia.com/advisories/34443

External Source: SECUNIA

Name: 34437

Type: Advisory

Hyperlink:http://secunia.com/advisories/34437

External Source: SECUNIA

Name: 34418

Hyperlink:http://secunia.com/advisories/34418

External Source: SECUNIA

Name: 34398

Type: Advisory

Hyperlink:http://secunia.com/advisories/34398

External Source: SECUNIA

Name: 34393

Type: Advisory

Hyperlink:http://secunia.com/advisories/34393

External Source: SECUNIA

Name: 34381

Type: Advisory

Hyperlink:http://secunia.com/advisories/34381

External Source: SECUNIA

Name: 34373

Type: Advisory

Hyperlink:http://secunia.com/advisories/34373

External Source: SECUNIA

Name: 34266

Hyperlink:http://secunia.com/advisories/34266

External Source: OVAL

Name: oval:org.mitre.oval:def:10544

Hyperlink:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10544

External Source: OSVDB

Name: 52988

Hyperlink:http://osvdb.org/52988

External Source: SUSE

Name: SUSE-SR:2009:007

Hyperlink:http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00004.html

External Source: CONFIRM

Name: http://bugs.gentoo.org/show_bug.cgi?id=261087

Hyperlink:http://bugs.gentoo.org/show_bug.cgi?id=261087

References to Check Content

Identifier:oval:org.mitre.oval:def:10544

Check System:http://oval.mitre.org/XMLSchema/oval-definitions-5

Hyperlink:http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:10544

Vulnerable software and versions

Configuration 1

* cpe:/a:ghostscript:ghostscript:8.0.1

* cpe:/a:ghostscript:ghostscript:8.15

* cpe:/a:ghostscript:ghostscript:8.61

* cpe:/a:ghostscript:ghostscript:0

* cpe:/a:ghostscript:ghostscript:8.15.2

* cpe:/a:ghostscript:ghostscript:8.60

* cpe:/a:ghostscript:ghostscript:8.57

* cpe:/a:ghostscript:ghostscript:8.56

* cpe:/a:ghostscript:ghostscript:8.54

* cpe:/a:ghostscript:ghostscript:7.07

* cpe:/a:ghostscript:ghostscript:7.05

* cpe:/a:ghostscript:ghostscript:5.50

* cpe:/a:ghostscript:ghostscript:8.64 and previous versions

* cpe:/a:argyllcms:cms:1.0.3 and previous versions

* Denotes Vulnerable Software

Technical Details

Vulnerability Type (View All)

Numeric Errors (CWE-189)

CVE Standard Vulnerability Entry:http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0584