RSS   Podatności dla 'Pstotext'   RSS

2006-11-26
 
CVE-2006-5869

 
 
pstotext before 1.9 allows user-assisted attackers to execute arbitrary commands via shell metacharacters in a file name.

 
2005-08-10
 
CVE-2005-2536

 
 
pstotext before 1.8g does not properly use the "-dSAFER" option when calling Ghostscript to extract plain text from PostScript and PDF files, which allows remote attackers to execute arbitrary commands via a malicious PostScript file.

 

Copyright 2024, cxsecurity.com

 

Back to Top