Sha256: d08c58e37abd3541bbae9908527f4093fda934f0180d462ffd6c2a4683e50070

Contents?: true

Size: 460 Bytes

Versions: 5

Compression:

Stored size: 460 Bytes

Contents

---
gem: curl
cve: 2013-2617
osvdb: 91230
url: http://osvdb.org/show/osvdb/91230
title: Curl Gem for Ruby URI Handling Arbitrary Command Injection
date: 2013-03-12
description: Curl Gem for Ruby contains a flaw that is triggered during the
  handling of specially crafted input passed via the URL.  This may allow
  a context-dependent attacker to potentially execute arbitrary commands by
  injecting them via a semi-colon (;).
cvss_v2: 7.5
patched_versions:

Version data entries

5 entries across 5 versions & 2 rubygems

Version Path
bundler-budit-0.6.2 data/ruby-advisory-db/gems/curl/OSVDB-91230.yml
bundler-budit-0.6.1 data/ruby-advisory-db/gems/curl/OSVDB-91230.yml
bundler-audit-0.6.1 data/ruby-advisory-db/gems/curl/OSVDB-91230.yml
bundler-audit-0.6.0 data/ruby-advisory-db/gems/curl/OSVDB-91230.yml
bundler-audit-0.5.0 data/ruby-advisory-db/gems/curl/OSVDB-91230.yml