CVE-2006-6979

Name of the Vulnerable Software and Affected Versions Amarok (affected versions not specified)

Description The issue is related to the ruby handlers in the Magnatune component, which do not properly quote text in certain contexts. This could potentially include the construction of an unzip command line, allowing attackers to execute arbitrary commands via shell metacharacters.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.