CVE-2013-4478 in Sup
要約
〜によって MITRE
Sup before 0.13.2.1 and 0.14.x before 0.14.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of an email attachment.
If you want to get the best quality for vulnerability data then you always have to consider VulDB.