The remote host is missing an update to slrn announced via advisory DSA 078-1.

https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20078-1

Byrial Jensen found a nasty problem in slrn (a threaded news reader). The notice on slrn-announce describes it as follows: When trying to decode binaries, the built-in code executes any shell scripts the article might contain, apparently assuming they would be some kind of self-extracting archive. This problem has been fixed in version 0.9.6.2-9potato2 by removing this feature.