{"vuid":"VU#538191","idnumber":"538191","name":"Ghostscript crashes when passing a null ipsp->ip value to the gs_type2_interpret function","keywords":["Ghostscript gs_type2_interpret null ptr dereference"],"overview":"The gs_type2_interpret function which is a part of Ghostscript is prone to denial-of-service conditions.","clean_desc":"Ghostscript contains a function called gs_type2_interpret which is not performing null value error checking. A specially crafted document can cause Ghostscript to deference a null pointer, causing a denial-of-service condition.","impact":"An attacker may use a specially crafted document to cause a denial-of-service condition.","resolution":"Upgrade According to the vendor's release notes this has been fixed in revision 10590.","workarounds":"","sysaffected":"","thanks":"Thanks to Jonathan Brossard at P1 Code Security for reporting this vulnerability.","author":"This document was written by Michael Orlando.","public":[],"cveids":[""],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2010-07-20T17:44:32Z","publicdate":"2010-01-06T00:00:00Z","datefirstpublished":"2010-10-12T18:42:30Z","dateupdated":"2010-11-30T20:21:01Z","revision":23,"vrda_d1_directreport":"1","vrda_d1_population":"3","vrda_d1_impact":"2","cam_widelyknown":"1","cam_exploitation":"0","cam_internetinfrastructure":"10","cam_population":"10","cam_impact":"8","cam_easeofexploitation":"2","cam_attackeraccessrequired":"11","cam_scorecurrent":"0.363","cam_scorecurrentwidelyknown":"0.99","cam_scorecurrentwidelyknownexploited":"1.65","ipprotocol":"","cvss_accessvector":"","cvss_accesscomplexity":"","cvss_authentication":null,"cvss_confidentialityimpact":"","cvss_integrityimpact":"","cvss_availabilityimpact":"","cvss_exploitablity":null,"cvss_remediationlevel":"","cvss_reportconfidence":"","cvss_collateraldamagepotential":"","cvss_targetdistribution":"","cvss_securityrequirementscr":"","cvss_securityrequirementsir":"","cvss_securityrequirementsar":"","cvss_basescore":"","cvss_basevector":"","cvss_temporalscore":"","cvss_environmentalscore":"","cvss_environmentalvector":"","metric":0.363,"vulnote":null}