Contents

--- 
gem: dragonfly
cve: 2013-1756
osvdb: 90647
url: http://www.osvdb.com/show/osvdb/90647
title: Dragonfly Gem Remote Code Execution
date: 2013-02-19

description: |
  The Dragonfly gem contains a flaw that allows an attacker to run arbitrary code
  on a host machine using carefully crafted requests.

cvss_v2: 

patched_versions: 
  - ">= 0.9.13"

unaffected_versions:
  - "< 0.7.0"

Version data entries

9 entries across 9 versions & 2 rubygems

Version	Path
bundler-audit-0.4.0	data/ruby-advisory-db/gems/dragonfly/OSVDB-90647.yml
bundler-audit-0.3.1	data/ruby-advisory-db/gems/dragonfly/OSVDB-90647.yml
mrjoy-bundler-audit-0.3.3	data/ruby-advisory-db/gems/dragonfly/OSVDB-90647.yml
mrjoy-bundler-audit-0.3.2	data/ruby-advisory-db/gems/dragonfly/OSVDB-90647.yml
mrjoy-bundler-audit-0.3.1	data/ruby-advisory-db/gems/dragonfly/OSVDB-90647.yml
bundler-audit-0.3.0	data/ruby-advisory-db/gems/dragonfly/OSVDB-90647.yml
mrjoy-bundler-audit-0.2.1	data/ruby-advisory-db/gems/dragonfly/OSVDB-90647.yml
bundler-audit-0.2.0	data/ruby-advisory-db/gems/dragonfly/OSVDB-90647.yml
mrjoy-bundler-audit-0.1.4	data/ruby-advisory-db/gems/dragonfly/OSVDB-90647.yml