CVE-2013-5647

Name of the Vulnerable Software and Affected Versions sounder gem version 1.0.1

Description The issue allows remote attackers to execute arbitrary commands via shell metacharacters in a filename, specifically in the lib/sounder/sound.rb file.

Recommendations For sounder gem version 1.0.1, consider avoiding the use of filenames with shell metacharacters until a patch is available. As a temporary workaround, restrict access to the sound.rb file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.