Sha256: 546d7d65c7ecda065c32a72d22b3e5f4d0dadb66fd4590f00ea3526ddc723907
Contents?: true
Size: 482 Bytes
Versions: 1
Compression:
Stored size: 482 Bytes
Contents
--- gem: ldoce cve: 2013-1911 osvdb: 91870 url: https://nvd.nist.gov/vuln/detail/CVE-2013-1911 title: ldoce Gem for Ruby MP3 URL Shell Metacharacter Injection Arbitrary Command Execution date: 2013-04-01 description: ldoce Gem for Ruby contains a flaw that is triggered during the handling of a specially crafted URL or filename for MP3 files that have shell metacharacters injected in to it. This may allow a context-dependent attacker to execute arbitrary commands. cvss_v2: 6.8
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| bundler-audit-0.7.0.1 | data/ruby-advisory-db/gems/ldoce/CVE-2013-1911.yml |