This script is Copyright (C) 2005-2015 Tenable Network Security, Inc.
The remote Mandrake Linux host is missing one or more security
Max Vozeler discovered that pstopnm, a part of the netpbm graphics
utility suite, would call the GhostScript interpreter on untrusted
PostScript files without using the -dSAFER option when converting a
PostScript file into a PBM, PGM, or PNM file. This could result in the
execution of arbitrary commands with the privileges of the user
running pstopnm if they could be convinced to try to convert a
malicious PostScript file.
The updated packages have been patched to correct this problem.
See also :
Update the affected packages.
Risk factor :
High / CVSS Base Score : 7.5
CVSS Temporal Score : 6.5
Public Exploit Available : true