Sha256: b0d08e0fa1e7ce5881a375929d3099b55614e0bc9ab97084930372e8d651e7ac

Contents?: true

Size: 431 Bytes

Versions: 9

Compression:

Stored size: 431 Bytes

Contents

--- 
gem: flash_tool
cve: 2013-2513
osvdb: 90829
url: http://osvdb.org/show/osvdb/90829
title: flash_tool Gem for Ruby File Download Handling Arbitrary Command Execution
date: 2013-03-04
description: flash_tool Gem for Ruby contains a flaw that is triggered during the handling of downloaded files that contain shell characters. With a specially crafted file, a context-dependent attacker can execute arbitrary commands.
cvss_v2:

Version data entries

9 entries across 9 versions & 2 rubygems

Version Path
bundler-audit-0.4.0 data/ruby-advisory-db/gems/flash_tool/OSVDB-90829.yml
bundler-audit-0.3.1 data/ruby-advisory-db/gems/flash_tool/OSVDB-90829.yml
mrjoy-bundler-audit-0.3.3 data/ruby-advisory-db/gems/flash_tool/OSVDB-90829.yml
mrjoy-bundler-audit-0.3.2 data/ruby-advisory-db/gems/flash_tool/OSVDB-90829.yml
mrjoy-bundler-audit-0.3.1 data/ruby-advisory-db/gems/flash_tool/OSVDB-90829.yml
bundler-audit-0.3.0 data/ruby-advisory-db/gems/flash_tool/OSVDB-90829.yml
mrjoy-bundler-audit-0.2.1 data/ruby-advisory-db/gems/flash_tool/OSVDB-90829.yml
bundler-audit-0.2.0 data/ruby-advisory-db/gems/flash_tool/OSVDB-90829.yml
mrjoy-bundler-audit-0.1.4 data/ruby-advisory-db/gems/flash_tool/OSVDB-90829.yml