Heap-Based Buffer Overflow in Ghostscript GhostPDL 9.50-9.54.0: Exploiting sampled_data_finish

Heap-Based Buffer Overflow in Ghostscript GhostPDL 9.50-9.54.0: Exploiting sampled_data_finish

CVE-2021-45949 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Ghostscript GhostPDL 9.50 through 9.54.0 has a heap-based buffer overflow in sampled_data_finish (called from sampled_data_continue and interp).

Learn more about our Web Application Penetration Testing UK.