Vulners
Lucene search
Ruby Gem Karteek Docsplit 0.5.4 Command Injection Vulnerability
| Reporter | Title | Published | Views | Family All 10 |
|---|---|---|---|---|
 | CVE-2013-1933 | 25 Apr 201323:00 | – | cve |
 | CVE-2013-1933 | 25 Apr 201323:00 | – | cvelist |
 | EUVD-2022-2371 | 3 Oct 202520:07 | – | euvd |
 | Karteek Docsplit vulnerable to OS Command Injection | 17 May 202201:36 | – | github |
 | CVE-2013-1933 | 25 Apr 201323:55 | – | nvd |
 | GHSA-4FVG-PWV7-V54G Karteek Docsplit vulnerable to OS Command Injection | 17 May 202201:36 | – | osv |
 | Ruby Gem Karteek Docsplit 0.5.4 Command Injection | 10 Apr 201300:00 | – | packetstorm |
 | Code injection | 25 Apr 201323:55 | – | prion |
 | Karteek Docsplit Gem for Ruby text_extractor.rb File Name Shell Metacharacter Injection Arbitrary Command Execution | 8 Apr 201300:00 | – | rubygems |
 | RubyGems karteek-docsplit 'text_extractor.rb'远程命令执行漏洞 | 11 Apr 201300:00 | – | seebug |
10
Remote Command Injection Ruby Gem Karteek Docsplit 0.5.4
4/1/2013
Larry W. Cashdollar
@_larry0
User supplied input isn't sanitized against shell metacharacters and is fed directly to the shell. If the user is tricked into extracting a file with shell characters in the name code can be executed remotely.
https://rubygems.org/gems/karteek-docsplit
./karteek-docsplit-0.5.4/lib/docsplit/text_extractor.rb
59 def extract_from_ocr(pdf, pages)
60 tempdir = Dir.mktmpdir
61 base_path = File.join(@output, @pdf_name)
62 if pages
63 pages.each do |page|
64 tiff = "{tempdir}/{@pdf_name}{page}.tif"
65 file = "{basepath}{page}"
66 run "MAGICKTMPDIR={tempdir} OMP_NUM_THREADS=2 gm convert -despeckle +adjoin #{MEMORY_ARGS} #{OCR_FLAGS} {pdf}[{page - 1}] #{tiff} 2>&1"
67 run "tesseract #{tiff} {file} -l eng 2>&1"
68 clean_text(file + '.txt') if @clean_ocr
69 FileUtils.remove_entry_secure tiff
70 end
71 else
72 tiff = "{tempdir}/{@pdf_name}.tif"
73 run "MAGICK_TMPDIR={tempdir} OMP_NUM_THREADS=2 gm convert -despeckle #{MEMORY_ARGS} #{OCR_FLAGS} #{pdf} #{tiff} 2>&1"
74 run "tesseract #{tiff} #{base_path} -l eng 2>&1"
75 clean_text(base_path + '.txt') if @clean_ocr
76 end
Run is defined as:
94 def run(command)
95 result = `#{command}`
96 raise ExtractionFailed, result if $? != 0
97 result
98 end
This vulnerability has been assigned CVE-2013-1933.
http://vapid.dhs.org/advisories/karteek-docsplit-cmd-inject.html
# 0day.today [2018-04-08] #Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
11 Apr 2013 00:00Current
6.6Medium risk
Vulners AI Score6.6
EPSS0.02836