Collaborate Disseminate
Can you play chess against your printer? The answer will soon be yes, and it’s thanks to [Nicolas Seriot]’s PSChess. It’s a chess engine implemented in PostScript, of all things. …read more Continue reading Playing Chess Against Your Printer, with PostScript
First up, Apple issued an emergency patch, then yanked, and re-issued it. The problem was a Remote Code Execution (RCE) vulnerability in WebKit — the basis of Apple’s cross-platform web …read more Continue reading This Week in Security: Apple’s 0-day, Microsoft’s Mess, and More
Even if you’ve never heard of the venerable Ghostscript project, you may have it installed without knowing. Continue reading Ghostscript bug could allow rogue documents to run system commands
PostScript started out as a programming language for printers. While PostScript printers are still a thing, there are many other ways to send data to a printer. But PostScript also …read more Continue reading Linux Fu: PDF for Penguins
Web analytics firm plugs a hole in its platform that allowed attackers to open a reverse shell that could be used to attack the service. Continue reading SEMrush Plugs Remote Code Execution Bug in Its SaaS Platform
A remote, unauthenticated attacker could execute arbitrary commands on systems with the privileges of the Ghostscript code. Continue reading Unpatched Ghostscript Flaws Allow Remote Takeover of Systems
Google Project Zero’s security researcher has discovered a critical remote code execution (RCE) vulnerability in Ghostscript—an open source interpreter for Adobe Systems’ PostScript and PDF page description languages.
Written entirely in C, Ghostscrip… Continue reading Critical Flaws in Ghostscript Could Leave Many Systems at Risk of Hacking