Back to directory

WRITEUP #193

CVE-2024-29511 – Abusing Ghostscript’s OCR device

OtherArbitrary file readArbitrary file writeSecurity code review

by@thomasrinsma(Thomas Rinsma)

Program

Ghostscript

Published

Jul 9, 2024

Added to HackDex

Jul 15, 2024

Read Full Writeuphttps://codeanlabs.com/blog/research/cve-2024-29511-abusing-ghostscripts-ocr-device/

▸ RELATED WRITEUPS

Studying 0days: How we hacked Anki, the world's most popular flashcard app

RCEComponents with known vulnerabilities

We hacked Anki - 0 day exploit from studying someone elses flashcards

RCEComponents with known vulnerabilities

Vulnerabilities in NodeJS C/C++ add-on extensions

OtherMemory corruption

Github Actions Exploitation: Dependabot

Oracle Retail Xstore Suite: Pre-authenticated Path Traversal

OtherPath traversal

Built with ❤️ by Shubham Rawat