pstotext: remote execution of arbitrary code
Posted Mar 30, 2006 13:58 UTC (Thu) by mv
In reply to: pstotext: remote execution of arbitrary code
Parent article: pstotext: remote execution of arbitrary code
I can't say for other distributions, but in the case of Debian and pstotext this vulnerability can actually be exploited from remote with only little user input. pstotext is listed in mailcap and gets invoked by various programs when the user chooses to display the postscript. Like, I send you an email with a .ps attached, you read the mail in mutt and press 'v' + enter to display the postscript. If $DISPLAY is not set or there are no other viewers installed, pstotext will be invoked and happily execute an embedded shellscript, do file IO, etc.
Not that I disagree with your point, though.
to post comments)