6 matches found
CVE-2013-4203
The self.rungpg function in lib/rgpg/gpghelper.rb in the rgpg gem before 0.2.3 for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in unspecified vectors...
CVE-2013-4203
The self.rungpg function in lib/rgpg/gpghelper.rb in the rgpg gem before 0.2.3 for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in unspecified vectors...
CVE-2013-4203
The CVE-2013-4203 issue affects the Ruby gem rgpg (self.run_gpg in lib/rgpg/gpg_helper.rb). It allows remote command execution via shell metacharacters because user input is not sanitized before passing to system(), affecting versions up to 0.2.2. The vulnerability can enable arbitrary commands o...
Rgpg 0.2.2 Ruby Gem Remote Command Injection
Title: Rgpg 0.2.2 Ruby Gem Remote Command Injection Date: 7/31/2013 Advisory Author: Larry W. Cashdollar, @larry0 CVE: CVE-2013-4203 Download: https://rubygems.org/gems/rgpg Description: "A simple Ruby wrapper around gpg command for file encryption. rgpg is a simple API for interacting with the g...
Ruby Gem Rgpg 0.2.2 Command Injection
Title: Rgpg 0.2.2 Ruby Gem Remote Command Injection Date: 7/31/2013 Advisory Author: Larry W. Cashdollar, @larry0 CVE: CVE-2013-4203 Download: https://rubygems.org/gems/rgpg Description: "A simple Ruby wrapper around gpg command for file encryption. rgpg is a simple API for interacting with the g...
Ruby Gem Rgpg 0.2.2 Command Injection Vulnerability
Ruby Gem Rgpg version 0.2.2 suffers from a remote command injection vulnerability. Title: Rgpg 0.2.2 Ruby Gem Remote Command Injection Date: 7/31/2013 Advisory Author: Larry W. Cashdollar, @larry0 CVE: CVE-2013-4203 Download: https://rubygems.org/gems/rgpg Description: "A simple Ruby wrapper arou...