4 matches found
Gentoo Security Advisory GLSA 200507-29 (pstotext)
The remote host is missing updates announced in advisory GLSA 200507-29. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
[SECURITY] [DSA 792-1] New pstotext packages fix arbitrary command execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 792-1 [email protected] http://www.debian.org/security/ Martin Schulze August 31st, 2005 http://www.debian.org/security/faq -...
CVE-2005-2536
CVE-2005-2536 affects pstotext prior to fixes described in Debian DSA-792-1 and GLSA 200507-29. The vulnerability arises because pstotext did not pass Ghostscript the -dSAFER option when extracting text from PostScript/PDF files, enabling a remote attacker to execute arbitrary commands via a mali...
CVE-2005-2536
pstotext before 1.8g does not properly use the "-dSAFER" option when calling Ghostscript to extract plain text from PostScript and PDF files, which allows remote attackers to execute arbitrary commands via a malicious PostScript file...