From 31387a0aa696b03c0e7a83688672893eed998c7b Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Sun, 2 Sep 2012 19:00:40 +0100
Subject: [PATCH] Social Eng. extension: massmailer -> calling IO.popen in a
 secure way

---
 extensions/social_engineering/mass_mailer/mass_mailer.rb | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/extensions/social_engineering/mass_mailer/mass_mailer.rb b/extensions/social_engineering/mass_mailer/mass_mailer.rb
index 2e61b4dd8..221ca73e7 100644
--- a/extensions/social_engineering/mass_mailer/mass_mailer.rb
+++ b/extensions/social_engineering/mass_mailer/mass_mailer.rb
@@ -222,9 +222,10 @@ EOF
         end
 
         def get_mime(file_path)
-          mime = "file --mime -b #{file_path}"
           result = ""
-          IO.popen(mime.to_s) { |f| result = f.gets.split(";").first }
+          IO.popen(["file", "--mime","-b", "#{file_path}"], 'r+') do |io|
+            result = io.readlines.first.split(";").first
+          end
           result
         end