3 matches found
Gentoo Security Advisory GLSA 200703-11 (amarok)
The remote host is missing updates announced in advisory GLSA 200703-11. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
CVE-2006-6979
The ruby handlers in the Magnatune component in Amarok do not properly quote text in certain contexts, probably including construction of an unzip command line, which allows attackers to execute arbitrary commands via shell metacharacters...
CVE-2006-6979
The CVE-2006-6979 entry concerns Amarok’s Magnatune component, specifically the Ruby handlers. The root cause is inadequate quoting in certain contexts (likely during unzip command construction), which can allow an attacker to inject shell metacharacters and execute arbitrary commands. The issue ...