CVE-2010-1869
GPL GhostScript 8.64 and 8.70 - Stack-Based Buffer Overflow in PostScript Parser
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2010-1869. PoCs published by Rodrigo Rubira Branco.
AI-analyzed exploit summary This exploit targets a stack overflow vulnerability in GhostScript 8.70 on FreeBSD 8.0. It crafts a malicious PDF file containing shellcode to achieve remote code execution via a bind shell on port 4444.
Description
Stack-based buffer overflow in the parser function in GhostScript 8.70 and 8.64 allows context-dependent attackers to execute arbitrary code via a crafted PostScript file.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Rodrigo Rubira Branco · perllocalbsd
https://www.exploit-db.com/exploits/14406
This exploit targets a stack overflow vulnerability in GhostScript 8.70 on FreeBSD 8.0. It crafts a malicious PDF file containing shellcode to achieve remote code execution via a bind shell on port 4444.
Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target:
GhostScript 8.70 on FreeBSD 8.0
No auth needed
Prerequisites:
Access to a system running GhostScript 8.70 on FreeBSD 8.0 · Ability to deliver the malicious PDF file to the target
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (11)
Core 11
Core References
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2010/1195
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/39753
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2010/1138
Vendor Advisory vendor-advisory
x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2010:102
Vendor Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-961-1
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/40103
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1024003
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/40580
Various Sources x_refsource_misc
http://www.checkpoint.com/defense/advisories/public/2010/cpai-10-May.html
Mailing List vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/511243/100/0/threaded
Scores
EPSS
0.2194
EPSS Percentile
95.9%
Details
CWE
CWE-119
Status
published
Products (2)
artifex/gpl_ghostscript
8.64
artifex/gpl_ghostscript
8.70
Published
May 12, 2010
Tracked Since
Feb 18, 2026