CVE-2013-2512: ftpd Gem for Ruby Shell Character Handling Remote Command Injection

Severity: Critical

CVSS Score: 9.8

The ftpd gem 0.2.1 for Ruby allows remote attackers to execute arbitrary OS commands via shell metacharacters in a LIST or NLST command argument within FTP protocol traffic.