Rubysec

Providing security resources for the Ruby community.
Follow us @rubysec or email us via info at rubysec.com

Advisory Archive

Back

---
gem: festivaltts4r
date: 2016-04-23
url: https://github.com/spejman/festivaltts4r/issues/1
cve: 2016-10194
title: festivaltts4r Gem for Ruby Arbitrary Command Execution
description: |
  festivaltts4r passes user modifiable strings directly to a shell
  command. An attacker can execute malicious commands by modifying
  the strings that are passed as arguments to the to_speech and
  and to_mp3 methods in lib/festivaltts4r/festival4r.rb library.