Sha256: 025f44b0d02ed10bc23261a1b1a2e878dbbcf053f15316b7676fd4a4c37d271a

Contents?: true

Size: 474 Bytes

Versions: 9

Compression:

Stored size: 474 Bytes

Contents

--- 
gem: fileutils
cve: 2013-2516
osvdb: 90717
url: http://osvdb.org/show/osvdb/90717
title: fileutils Gem for Ruby file_utils.rb Crafted URL Handling Remote Command Execution
date: 2013-02-28
description: fileutils Gem for Ruby contains a flaw in file_utils.rb. The issue is triggered when handling a specially crafted URL containing a command after a delimiter (;). This may allow a remote attacker to potentially execute arbitrary commands.
cvss_v2: 
patched_versions:

Version data entries

9 entries across 9 versions & 2 rubygems

Version Path
bundler-audit-0.4.0 data/ruby-advisory-db/gems/fileutils/OSVDB-90717.yml
bundler-audit-0.3.1 data/ruby-advisory-db/gems/fileutils/OSVDB-90717.yml
mrjoy-bundler-audit-0.3.3 data/ruby-advisory-db/gems/fileutils/OSVDB-90717.yml
mrjoy-bundler-audit-0.3.2 data/ruby-advisory-db/gems/fileutils/OSVDB-90717.yml
mrjoy-bundler-audit-0.3.1 data/ruby-advisory-db/gems/fileutils/OSVDB-90717.yml
bundler-audit-0.3.0 data/ruby-advisory-db/gems/fileutils/OSVDB-90717.yml
mrjoy-bundler-audit-0.2.1 data/ruby-advisory-db/gems/fileutils/OSVDB-90717.yml
bundler-audit-0.2.0 data/ruby-advisory-db/gems/fileutils/OSVDB-90717.yml
mrjoy-bundler-audit-0.1.4 data/ruby-advisory-db/gems/fileutils/OSVDB-90717.yml