---
gem: extlib
cve: 2013-1802
osvdb: 90740
url: http://osvdb.org/show/osvdb/90740
title: extlib Gem for Ruby Type Casting Parameter Parsing Remote Code Execution 
date: 2013-01-08

description: |
  extlib Gem for Ruby contains a flaw that is triggered when a type casting
  error occurs during the parsing of parameters. This may allow a
  context-dependent attacker to potentially execute arbitrary code.

cvss_v2: 9.3

patched_versions:
  - ">= 0.9.16"