oss-sec mailing list archives

Re: CVE-2017-8291 ghostscript remote code execution

From: redrain root <rootredrain () gmail com>
Date: Sat, 29 Apr 2017 10:43:50 +0800

what a awkward??
I have discovered a part of my vulns about ghostscript last year and
exploited in fulldisclosure early!
and these vulns are part of mine I was going to discovered these in defcon
or other conference...WTF...
u guys are logo designer???

there are two demos last year
Evince Arbitrary Code Execution https://youtu.be/wzcrHXngfcM Attack Imagick
through Ghostscript https://youtu.be/tPGm_ANDyOw


Regards,
redrain



2017-04-28 19:37 GMT+08:00 David Black <dblack () atlassian com>:

On Friday, 28 April 2017, Kurt H Maier <khm () sciops net> wrote:

On Fri, Apr 28, 2017 at 01:50:04AM -0000, security () atlassian com
<javascript:;> wrote:


Why are you sending user-tracking urls to this list?

Hi Kurt,
We did not intend to send user tracking urls to this list. However, the
method we used to send the email resulted in sendgrid rewriting the the
links. We apologise regardless.


--
David.


--
David Black / Security Engineer.

Current thread:

CVE-2017-8291 ghostscript remote code execution Marcus Meissner (Apr 27)
- <Possible follow-ups>
- Re: CVE-2017-8291 ghostscript remote code execution security (Apr 27)
  - Re: CVE-2017-8291 ghostscript remote code execution Kurt H Maier (Apr 28)
    - Re: CVE-2017-8291 ghostscript remote code execution David Black (Apr 28)
    - Re: CVE-2017-8291 ghostscript remote code execution redrain root (Apr 28)
    - Re: CVE-2017-8291 ghostscript remote code execution Tavis Ormandy (Apr 28)
    - Re: CVE-2017-8291 ghostscript remote code execution redrain root (Apr 29)
  - Re: CVE-2017-8291 ghostscript remote code execution Kurt H Maier (Apr 28)