Full title: Ghostscript Failed Restore Command Execution Exploit 
Category: local exploits
Platform: linux
This Metasploit module exploits a -dSAFER bypass in Ghostscript to execute arbitrary commands by handling a failed restore (grestore) in PostScript to disable LockSafetyParams and avoid invalidaccess. This vulnerability is reachable via libraries such as ImageMagick, and this module provides the latest vector for Ghostscript.

# 0day.today @ http://0day.today/