CVE-2013-2512

Name of the Vulnerable Software and Affected Versions ftpd gem version 0.2.1

Description The issue allows remote attackers to execute arbitrary OS commands via shell metacharacters in a LIST or NLST command argument within FTP protocol traffic.

Recommendations For ftpd gem version 0.2.1, consider restricting the use of LIST or NLST commands until a patch is available, or update to a version that fixes this issue if available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.