lib/sup/message_chunks.rb in Sup before 0.13.2.1 and 0.14.x before 0.14.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the content_type of an email attachment.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2013-12-07T20:00:00

Updated: 2024-08-06T16:45:14.810Z

Reserved: 2013-06-12T00:00:00

Link: CVE-2013-4479

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2013-12-07T20:55:02.493

Modified: 2024-11-21T01:55:39.093

Link: CVE-2013-4479

cve-icon Redhat

No data.