ADVISORIES
- CVE-2013-2513 (NVD)
- GHSA-6325-6g32-7p35
- OSVDB-90829
GEM
PATCHED VERSIONS
None.
DESCRIPTION
flash_tool Gem for Ruby contains a flaw that is triggered during the handling of downloaded files that contain shell characters. With a specially crafted file, a context-dependent attacker can execute arbitrary commands.