Bugtraq mailing list archives
Re: vulnerabilities of postscript printers
From: Georg Lutz <glist () gmx net>
Date: Wed, 28 Jan 2004 17:43:41 +0100
On 2004-01-24, Glynn Clements wrote:
PostScript has the ability to read/write named files, and nothing prohibits an implementation from making peripheral devices or ports accessible as named files. E.g. using GhostScript on Linux, the following trivial PostScript program sends a WAV file (or the first 20kb thereof) to the sound card: (/dev/dsp) (w) file dup (foo.wav) (r) file 20000 string readstring pop writestring flushfile [The -dSAFER switch disables file access, and should be used when running gs on "untrusted" PostScript files.]
Does this mean, that a Postscript-file is not safer than a MS Word document? Shouldnt -dSAFER be then the default option? Or breaks this something else? -- Georg
Current thread:
- Re: vulnerabilities of postscript printers Georg Lutz (Feb 02)
- <Possible follow-ups>
- Re: vulnerabilities of postscript printers Dragos Ruiu (Feb 02)
- Re: vulnerabilities of postscript printers Nicolas Gregoire (Feb 10)