Skip to content
/ CVE-2019-14811-in-pdf-exploit Public

This exploit targets CVE-2019-14811 in GS environments where PostScript output is not reflected, but is executed such as PDF previews via png images.

1 star 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

matejsmycka/CVE-2019-14811-in-pdf-exploit

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
images
images
 
 
README.md
README.md
 
 
exploit.pdf
exploit.pdf
 
 
exploit.ps
exploit.ps
 
 

Repository files navigation

CVE-2019-14811 GhostScript PDF preview Exploit PoC

This exploit targets CVE-2019-14811 in GS environments where PostScript output is not reflected, but is executed such as PDF previews via png images.

Exploit renders commands directly in (pngXXm) preview, it is based on https://github.com/hhc0null/GhostRule/blob/master/ghostrule1.ps.

The dSafer flag gets overridden to allow execution of arbitrary commands using .forceput via .pdf_hook_DSC_Creator. See screenshot below.

Showcase

About

This exploit targets CVE-2019-14811 in GS environments where PostScript output is not reflected, but is executed such as PDF previews via png images.

Topics

ghostscript exploit poc

Resources

Readme
Activity

Stars

1 star

Watchers

0 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages