The ruby handlers in the Magnatune component in Amarok do not properly quote text in certain contexts, probably including construction of an unzip command line, which allows attackers to execute arbitrary commands via shell metacharacters.
bugs.gentoo.org/show_bug.cgi?id=166901
bugs.kde.org/show_bug.cgi?id=138499
lists.suse.com/archive/suse-security-announce/2007-Jan/0015.html
secunia.com/advisories/23984
secunia.com/advisories/24159
secunia.com/advisories/24510
security.gentoo.org/glsa/glsa-200703-11.xml
www.securityfocus.com/bid/22568
www.vupen.com/english/advisories/2007/0613