Sha256: 827b1b219debed6d5cf2705ebbe535ae7346759bca5cb0e49108d10513937a17

Contents?: true

Size: 511 Bytes

Versions: 14

Compression:

Stored size: 511 Bytes

Contents

--- 
gem: pdfkit
cve: 2013-1607
osvdb: 90867
url: http://osvdb.org/show/osvdb/90867
title: PDFKit Gem for Ruby PDF File Generation Parameter Handling Remote Code Execution
date: 2013-02-21
description: PDFKit Gem for Ruby contains a flaw that is due to the program failing to properly validate input during the handling of parameters when generating PDF files. This may allow a remote attacker to potentially execute arbitrary code via the pdfkit generation options.
cvss_v2: 
patched_versions: 
  - ">= 0.5.3"

Version data entries

14 entries across 14 versions & 3 rubygems

Version Path
bundler-budit-0.6.2 data/ruby-advisory-db/gems/pdfkit/OSVDB-90867.yml
bundler-budit-0.6.1 data/ruby-advisory-db/gems/pdfkit/OSVDB-90867.yml
bundler-audit-0.6.1 data/ruby-advisory-db/gems/pdfkit/OSVDB-90867.yml
bundler-audit-0.6.0 data/ruby-advisory-db/gems/pdfkit/OSVDB-90867.yml
bundler-audit-0.5.0 data/ruby-advisory-db/gems/pdfkit/OSVDB-90867.yml
bundler-audit-0.4.0 data/ruby-advisory-db/gems/pdfkit/OSVDB-90867.yml
bundler-audit-0.3.1 data/ruby-advisory-db/gems/pdfkit/OSVDB-90867.yml
mrjoy-bundler-audit-0.3.3 data/ruby-advisory-db/gems/pdfkit/OSVDB-90867.yml
mrjoy-bundler-audit-0.3.2 data/ruby-advisory-db/gems/pdfkit/OSVDB-90867.yml
mrjoy-bundler-audit-0.3.1 data/ruby-advisory-db/gems/pdfkit/OSVDB-90867.yml
bundler-audit-0.3.0 data/ruby-advisory-db/gems/pdfkit/OSVDB-90867.yml
mrjoy-bundler-audit-0.2.1 data/ruby-advisory-db/gems/pdfkit/OSVDB-90867.yml
bundler-audit-0.2.0 data/ruby-advisory-db/gems/pdfkit/OSVDB-90867.yml
mrjoy-bundler-audit-0.1.4 data/ruby-advisory-db/gems/pdfkit/OSVDB-90867.yml