Sha256: 3164bf6af894a13e07b64a42325c9fcc2d575846094b4cf9a6736a7cc1bda8ee
Contents?: true
Size: 632 Bytes
Versions: 1
Compression:
Stored size: 632 Bytes
Contents
--- gem: mail cve: 2011-0739 osvdb: 70667 url: https://nvd.nist.gov/vuln/detail/CVE-2011-0739 title: > Mail Gem for Ruby lib/mail/network/delivery_methods/sendmail.rb Email From: Address Arbitrary Shell Command Injection date: 2011-01-25 description: | Mail Gem for Ruby contains a flaw related to the failure to properly sanitise input passed from an email from address in the 'deliver()' function in 'lib/mail/network/delivery_methods/sendmail.rb' before being used as a command line argument. This may allow a remote attacker to inject arbitrary shell commands. cvss_v2: 6.8 patched_versions: - ">= 2.2.15"
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| bundler-audit-0.7.0.1 | data/ruby-advisory-db/gems/mail/CVE-2011-0739.yml |