Launchpad CVE tracker

CVE 2013-4479

lib/sup/message_chunks.rb in Sup before 0.13.2.1 and 0.14.x before 0.14.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the content_type of an email attachment.

See the

CVE page on Mitre.org for more details.

References

MISC: http://seclists.org/fu...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://www.debian.org/...
MISC: http://lists.fedorapro...
MISC: http://www.openwall.co...
MISC: http://rubyforge.org/p...
MISC: https://github.com/sup...

Launchpad.net

CVE 2013-4479

Related bugs

References