OSVDB-96425: Flaw in the method_missing implementation

August 3, 2013

The issue is triggered when handling exec commands called via send(). This may allow a remote attacker to execute arbitrary commands.

References

www.osvdb.org/show/osvdb/96425

Code Behaviors & Features

Detect and mitigate OSVDB-96425 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →