CVE-2001-1353
https://notcve.org/view.php?id=CVE-2001-1353
ghostscript before 6.51 allows local users to read and write arbitrary files as the 'lp' user via the file operator, even with -dSAFER enabled. • http://archives.neohapsis.com/archives/hp/2001-q4/0069.html http://marc.info/?l=lprng&m=100083210910857&w=2 http://rhn.redhat.com/errata/RHSA-2001-112.html http://www.redhat.com/support/errata/RHSA-2001-138.html •
CVE-2000-1163
https://notcve.org/view.php?id=CVE-2000-1163
ghostscript before 5.10-16 uses an empty LD_RUN_PATH environmental variable to find libraries in the current directory, which could allow local users to execute commands as other users by placing a Trojan horse library into a directory from which another user executes ghostscript. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000343 http://www.calderasystems.com/support/security/advisories/CSSA-2000-041.0.txt http://www.debian.org/security/2000/20001123 http://www.linux-mandrake.com/en/security/MDKSA-2000-074.php3 http://www.securityfocus.com/bid/1991 https://exchange.xforce.ibmcloud.com/vulnerabilities/5564 •
CVE-2000-1162
https://notcve.org/view.php?id=CVE-2000-1162
ghostscript before 5.10-16 allows local users to overwrite files of other users via a symlink attack. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000343 http://www.calderasystems.com/support/security/advisories/CSSA-2000-041.0.txt http://www.debian.org/security/2000/20001123 http://www.linux-mandrake.com/en/security/MDKSA-2000-074.php3 http://www.redhat.com/support/errata/RHSA-2000-114.html http://www.securityfocus.com/bid/1990 https://exchange.xforce.ibmcloud.com/vulnerabilities/5563 •
CVE-1999-0155
https://notcve.org/view.php?id=CVE-1999-0155
The ghostscript command with the -dSAFER option allows remote attackers to execute commands. • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0155 •