Aladdin Ghostscript Arbitrary Shared Library Usage Vulnerability

Bugtraq ID:	1991
Class:	Design Error
CVE:	CVE-2000-1163
Remote:	No
Local:	Yes
Published:	Nov 22 2000 12:00AM
Updated:	Jul 06 2007 05:07PM
Credit:	Several Linux vendors have released advisories which address this vulnerability, including Caldera, Debian, Mandrake and Red Hat.
Vulnerable:	Aladdin Enterprises Ghostscript 5.50 + HP Secure OS software for Linux 1.0 + Redhat Linux 7.1 ia64 + Redhat Linux 7.1 ia64 + Redhat Linux 7.1 i386 + Redhat Linux 7.1 i386 + Redhat Linux 7.1 alpha + Redhat Linux 7.1 alpha + Redhat Linux 7.0 J i386 + Redhat Linux 7.0 J i386 + Redhat Linux 7.0 sparc + Redhat Linux 7.0 sparc + Redhat Linux 7.0 i386 + Redhat Linux 7.0 i386 + Redhat Linux 7.0 alpha + Redhat Linux 7.0 alpha + Redhat Linux 6.2 sparc + Redhat Linux 6.2 sparc + Redhat Linux 6.2 i386 + Redhat Linux 6.2 i386 + Redhat Linux 6.2 alpha + Redhat Linux 6.2 alpha Aladdin Enterprises Ghostscript 5.10.15 + Caldera OpenLinux Desktop 2.3 + Caldera OpenLinux Desktop 2.3 + Caldera OpenLinux eBuilder 3.0 + SCO eDesktop 2.4 + SCO eDesktop 2.4 + SCO eServer 2.3 + SCO eServer 2.3 Aladdin Enterprises Ghostscript 5.10.10 + Debian Linux 2.2 sparc + Debian Linux 2.2 sparc + Debian Linux 2.2 powerpc + Debian Linux 2.2 powerpc + Debian Linux 2.2 arm + Debian Linux 2.2 arm + Debian Linux 2.2 alpha + Debian Linux 2.2 alpha + Debian Linux 2.2 68k + Debian Linux 2.2 68k + Debian Linux 2.2 + Debian Linux 2.2 + Mandriva Linux Mandrake 7.2 + Mandriva Linux Mandrake 7.2 + Mandriva Linux Mandrake 7.1 + Mandriva Linux Mandrake 7.1 + Mandriva Linux Mandrake 7.0 + Mandriva Linux Mandrake 7.0 + Mandriva Linux Mandrake 6.1 + Mandriva Linux Mandrake 6.0 + Mandriva Linux Mandrake 6.0 Aladdin Enterprises Ghostscript 5.10 cl Aladdin Enterprises Ghostscript 4.3 + HP Secure OS software for Linux 1.0 + Redhat Linux 5.2 sparc + Redhat Linux 5.2 sparc + Redhat Linux 5.2 i386 + Redhat Linux 5.2 i386 + Redhat Linux 5.2 alpha + Redhat Linux 5.2 alpha
Not Vulnerable:	Aladdin Enterprises Ghostscript 5.50.8 Aladdin Enterprises Ghostscript 5.10.16 Aladdin Enterprises Ghostscript 5.10.12 cl Aladdin Enterprises Ghostscript 5.10.10 -1 Aladdin Enterprises Ghostscript 4.3.2

Aladdin Ghostscript Arbitrary Shared Library Usage Vulnerability

A vulnerability occurs in certain versions of Aladdin Ghostscript, a multiplatform PostScript interpreter.

Improper use of the LD_RUN_PATH environment variable can cause the program to load shared libraries found in the current directory.

An attacker with a malicious shared library could exploit this to execute hostile code on the affected host, potentially elevating their privileges.

Aladdin Ghostscript Arbitrary Shared Library Usage Vulnerability

Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].

Aladdin Ghostscript Arbitrary Shared Library Usage Vulnerability

References: