VYPR
Unrated severityNVD Advisory· Published Aug 10, 2005· Updated Jun 16, 2026

CVE-2005-2536

CVE-2005-2536

Description

pstotext before 1.8g does not properly use the "-dSAFER" option when calling Ghostscript to extract plain text from PostScript and PDF files, which allows remote attackers to execute arbitrary commands via a malicious PostScript file.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Pstotext/Pstotext2 versions
    cpe:2.3:a:pstotext:pstotext:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:pstotext:pstotext:*:*:*:*:*:*:*:*range: <=1.9.1
    • (no CPE)range: <1.8g

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.