CVE-2009-3743
Ghostscript < 8.71 - Remote Code Execution via TrueType Font Integer Overflow
Title source: llmDescription
Off-by-one error in the Ins_MINDEX function in the TrueType bytecode interpreter in Ghostscript before 8.71 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a malformed TrueType font in a document that trigger an integer overflow and a heap-based buffer overflow.
References (6)
Core 6
Core References
Vendor Advisory vendor-advisory
x_refsource_redhat
https://rhn.redhat.com/errata/RHSA-2012-0095.html
Third Party Advisory vendor-advisory
x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-201412-17.xml
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1024785
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/514892/100/0/threaded
US Government Resource x_refsource_misc
http://www.kb.cert.org/vuls/id/JALR-87YGN8
US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/644319
Scores
EPSS
0.0394
EPSS Percentile
88.5%
Details
CWE
CWE-189
Status
published
Products (31)
artifex/afpl_ghostscript
6.0
artifex/afpl_ghostscript
6.01
artifex/afpl_ghostscript
6.50
artifex/afpl_ghostscript
7.00
artifex/afpl_ghostscript
7.03
artifex/afpl_ghostscript
7.04
artifex/afpl_ghostscript
8.00
artifex/afpl_ghostscript
8.11
artifex/afpl_ghostscript
8.12
artifex/afpl_ghostscript
8.13
... and 21 more
Published
Aug 26, 2010
Tracked Since
Feb 18, 2026