BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
Remote command execution in Ruby Gem Command Wrap Mar 18 2013 10:52PM
Larry0 me com
Remote command execution in Ruby Gem Command Wrap

3/15/2013
http://rubygems.org/gems/command_wrap

Commands executed if the remote URL or filename contains the shell character ';'. The commands will be executed as the client user if tricked into using the malicious URL or filename.

Examining the f...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus