CERT/CC Vulnerability Note VU#352825

Overview

A buffer overflow vulnerability exists in the GNU gv viewer application. Successful exploitation of this vulnerability may allow an attacker to execute arbitrary code, or cause a denial-of-service condition.

Description

From the GNU gv website:

GNU gv allows to view and navigate through PostScript and PDF documents on an X display by providing a user interface for the ghostscript interpreter.
gv is a improved derivation of Timothy O. Theisen's Ghostview developed by Johannes Plass.

A buffer overflow vulnerability exists in the GNU gv viewer. An attacker may be able to trigger the overflow by convincing a user to open a specially-crafted PostScript file.

Note that GNU gv is maintained and packaged by many vendors. Please see the systems affected portion of this document for a list of vendors who distribute GNU gv.

Impact

A remote, unauthenticated attacker may be able to execute code with the privileges of the user running GNU gv.

Solution

Upgrade
Apply an upgrade. See the systems affected portion of this document for information about specific vendors.

Do not execute GNU gv with root privileges

Using a non-privileged user account to launch GNU gv may mitigate the impact of this vulnerability.

Vendor Information

352825

Filter by status:

Filter by content: Additional information available

Sort by:

Expand all

Debian GNU/Linux Affected

Gentoo Linux Affected

Juniper Networks, Inc. Not Affected

Microsoft Corporation Not Affected

NetBSD Not Affected

Openwall GNU/*/Linux Not Affected

Apple Computer, Inc. Unknown

Conectiva Inc. Unknown

Cray Inc. Unknown

EMC, Inc. (formerly Data General Corporation) Unknown

Engarde Secure Linux Unknown

F5 Networks, Inc. Unknown

Fedora Project Unknown

FreeBSD, Inc. Unknown

Fujitsu Unknown

Hewlett-Packard Company Unknown

Hitachi Unknown

IBM Corporation Unknown

IBM Corporation (zseries) Unknown

IBM eServer Unknown

Immunix Communications, Inc. Unknown

Ingrian Networks, Inc. Unknown

Mandriva, Inc. Unknown

MontaVista Software, Inc. Unknown

NEC Corporation Unknown

Nokia Unknown

Novell, Inc. Unknown

OpenBSD Unknown

QNX, Software Systems, Inc. Unknown

Red Hat, Inc. Unknown

SUSE Linux Unknown

Silicon Graphics, Inc. Unknown

Slackware Linux Inc. Unknown

Sony Corporation Unknown

Sun Microsystems, Inc. Unknown

The SCO Group Unknown

Trustix Secure Linux Unknown

Turbolinux Unknown

Ubuntu Unknown

Unisys Unknown

Wind River Systems, Inc. Unknown

View all 41 vendors View less vendors

CVSS Metrics

Group	Score	Vector
Base
Temporal
Environmental

References

Acknowledgements

This vulnerability was publicly reported by Renaud Lifchitz.

This document was written by Ryan Giobbi.

Other Information

CVE IDs:	CVE-2006-5864
Severity Metric:	0.10
Date Public:	2006-11-09
Date First Published:	2006-11-28
Date Last Updated:	2006-12-01 20:42 UTC
Document Revision:	44

Software Engineering Institute

CERT Coordination Center

GNU gv buffer overflow vulnerability

Vulnerability Note VU#352825