Unrated severityNVD Advisory· Published Jul 22, 2010· Updated Apr 29, 2026
CVE-2009-4897
CVE-2009-4897
Description
Buffer overflow in gs/psi/iscan.c in Ghostscript 8.64 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted PDF document containing a long name.
Affected products
31cpe:2.3:a:artifex:afpl_ghostscript:6.0:*:*:*:*:*:*:*+ 15 more
- cpe:2.3:a:artifex:afpl_ghostscript:6.0:*:*:*:*:*:*:*
- cpe:2.3:a:artifex:afpl_ghostscript:6.01:*:*:*:*:*:*:*
- cpe:2.3:a:artifex:afpl_ghostscript:6.50:*:*:*:*:*:*:*
- cpe:2.3:a:artifex:afpl_ghostscript:7.00:*:*:*:*:*:*:*
- cpe:2.3:a:artifex:afpl_ghostscript:7.03:*:*:*:*:*:*:*
- cpe:2.3:a:artifex:afpl_ghostscript:7.04:*:*:*:*:*:*:*
- cpe:2.3:a:artifex:afpl_ghostscript:8.00:*:*:*:*:*:*:*
- cpe:2.3:a:artifex:afpl_ghostscript:8.11:*:*:*:*:*:*:*
- cpe:2.3:a:artifex:afpl_ghostscript:8.12:*:*:*:*:*:*:*
- cpe:2.3:a:artifex:afpl_ghostscript:8.13:*:*:*:*:*:*:*
- cpe:2.3:a:artifex:afpl_ghostscript:8.14:*:*:*:*:*:*:*
- cpe:2.3:a:artifex:afpl_ghostscript:8.50:*:*:*:*:*:*:*
- cpe:2.3:a:artifex:afpl_ghostscript:8.51:*:*:*:*:*:*:*
- cpe:2.3:a:artifex:afpl_ghostscript:8.52:*:*:*:*:*:*:*
- cpe:2.3:a:artifex:afpl_ghostscript:8.53:*:*:*:*:*:*:*
- cpe:2.3:a:artifex:afpl_ghostscript:8.54:*:*:*:*:*:*:*
- cpe:2.3:a:artifex:ghostscript_fonts:8.11:*:*:*:*:*:*:*
cpe:2.3:a:artifex:gpl_ghostscript:*:*:*:*:*:*:*:*+ 13 more
- cpe:2.3:a:artifex:gpl_ghostscript:*:*:*:*:*:*:*:*range: <=8.64
- cpe:2.3:a:artifex:gpl_ghostscript:8.01:*:*:*:*:*:*:*
- cpe:2.3:a:artifex:gpl_ghostscript:8.15:*:*:*:*:*:*:*
- cpe:2.3:a:artifex:gpl_ghostscript:8.50:*:*:*:*:*:*:*
- cpe:2.3:a:artifex:gpl_ghostscript:8.51:*:*:*:*:*:*:*
- cpe:2.3:a:artifex:gpl_ghostscript:8.54:*:*:*:*:*:*:*
- cpe:2.3:a:artifex:gpl_ghostscript:8.56:*:*:*:*:*:*:*
- cpe:2.3:a:artifex:gpl_ghostscript:8.57:*:*:*:*:*:*:*
- cpe:2.3:a:artifex:gpl_ghostscript:8.60:*:*:*:*:*:*:*
- cpe:2.3:a:artifex:gpl_ghostscript:8.61:*:*:*:*:*:*:*
- cpe:2.3:a:artifex:gpl_ghostscript:8.62:*:*:*:*:*:*:*
- cpe:2.3:a:artifex:gpl_ghostscript:8.63:*:*:*:*:*:*:*
- cpe:2.3:a:artifex:gpl_ghostscript:8.70:*:*:*:*:*:*:*
- cpe:2.3:a:artifex:gpl_ghostscript:8.71:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
10- www.securityfocus.com/bid/41593nvdPatch
- bugs.ghostscript.com/show_bug.cginvdVendor Advisory
- secunia.com/advisories/40580nvdVendor Advisory
- security.gentoo.org/glsa/glsa-201412-17.xmlnvd
- www.mandriva.com/security/advisoriesnvd
- www.mandriva.com/security/advisoriesnvd
- www.osvdb.org/66277nvd
- www.ubuntu.com/usn/USN-961-1nvd
- bugzilla.redhat.com/show_bug.cginvd
- exchange.xforce.ibmcloud.com/vulnerabilities/60380nvd
News mentions
0No linked articles in our index yet.