Sha256: 2867473cd59c6ab3c4a50e661699be074d8398138ffb87cd713a90174c70e6a4

Contents?: true

Size: 462 Bytes

Versions: 6

Compression:

Stored size: 462 Bytes

Contents

--- 
gem: fileutils
osvdb: 90718
url: http://osvdb.org/show/osvdb/90718
title: fileutils Gem for Ruby /lib/file_utils/open_office.rb Character Handling Remote Command Execution
date: 2013-02-28
description: fileutils Gem for Ruby contains a flaw in /lib/file_utils/open_office.rb. The issue is triggered when handling a specially crafted URL containing a command after a delimiter (;). This may allow a remote attacker to potentially execute arbitrary commands.

Version data entries

6 entries across 6 versions & 2 rubygems

Version Path
bundler-audit-0.7.0.1 data/ruby-advisory-db/gems/fileutils/OSVDB-90718.yml
bundler-budit-0.6.2 data/ruby-advisory-db/gems/fileutils/OSVDB-90718.yml
bundler-budit-0.6.1 data/ruby-advisory-db/gems/fileutils/OSVDB-90718.yml
bundler-audit-0.6.1 data/ruby-advisory-db/gems/fileutils/OSVDB-90718.yml
bundler-audit-0.6.0 data/ruby-advisory-db/gems/fileutils/OSVDB-90718.yml
bundler-audit-0.5.0 data/ruby-advisory-db/gems/fileutils/OSVDB-90718.yml