Unrated severityNVD Advisory· Published Feb 8, 2007· Updated Jun 16, 2026
CVE-2006-6979
CVE-2006-6979
Description
The ruby handlers in the Magnatune component in Amarok do not properly quote text in certain contexts, probably including construction of an unzip command line, which allows attackers to execute arbitrary commands via shell metacharacters.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
9- bugs.kde.org/show_bug.cginvdVendor Advisory
- lists.suse.com/archive/suse-security-announce/2007-Jan/0015.htmlnvdVendor Advisory
- secunia.com/advisories/23984nvdVendor Advisory
- secunia.com/advisories/24159nvdVendor Advisory
- secunia.com/advisories/24510nvdVendor Advisory
- www.vupen.com/english/advisories/2007/0613nvdVendor Advisory
- bugs.gentoo.org/show_bug.cginvd
- security.gentoo.org/glsa/glsa-200703-11.xmlnvd
- www.securityfocus.com/bid/22568nvd
News mentions
0No linked articles in our index yet.