← volver
CVE-2013-1875

CVE-2013-1875

EPSS 3.6%
command_wrap.rb in the command_wrap Gem for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in a URL or filename.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://packetstormsecurity.com/files/120847/Ruby-Gem-Command-Wrap-Command-Execution.htmlhttp://seclists.org/fulldisclosure/2013/Mar/175http://www.openwall.com/lists/oss-security/2013/03/19/9http://www.osvdb.org/91450