CVSS: 8.1EPSS: 0%CPEs: 6EXPL: 0CVE-2011-1004 – Ruby: Symlink race condition by removing directory trees in fileutils module
https://notcve.org/view.php?id=CVE-2011-1004
02 Mar 2011 — The FileUtils.remove_entry_secure method in Ruby 1.8.6 through 1.8.6-420, 1.8.7 through 1.8.7-330, 1.8.8dev, 1.9.1 through 1.9.1-430, 1.9.2 through 1.9.2-136, and 1.9.3dev allows local users to delete arbitrary files via a symlink attack. El método FileUtils.remove_entry_secure de Ruby 1.8.6 hasta la versión 1.8.6-420, 1.8.7 hasta la 1.8.7-330, 1.8.8dev, 1.9.1 hasta la 1.9.1-430, 1.9.2 hasta la 1.9.2-136 y 1.9.3dev permite a usuarios locales borrar archivos de su elección a través de un enlace de ataque sim... • http://lists.apple.com/archives/security-announce/2012/May/msg00001.html • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 8.1EPSS: 1%CPEs: 5EXPL: 1CVE-2011-1005 – Ruby: Untrusted codes able to modify arbitrary strings
https://notcve.org/view.php?id=CVE-2011-1005
02 Mar 2011 — The safe-level feature in Ruby 1.8.6 through 1.8.6-420, 1.8.7 through 1.8.7-330, and 1.8.8dev allows context-dependent attackers to modify strings via the Exception#to_s method, as demonstrated by changing an intended pathname. La funcionalidad safe-level de Ruby 1.8.6 hasta la versión 1.8.6-420, 1.8.7 hasta la 1.8.7-330 y 1.8.8dev permite a atacantes, dependiendo del contexto, modificar cadenas de texto a través del método Exception#to_s method, como se ha demostrado cambiando el pathname previsto. Multipl... • http://lists.apple.com/archives/security-announce/2012/May/msg00001.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 0%CPEs: 15EXPL: 0CVE-2010-2489
https://notcve.org/view.php?id=CVE-2010-2489
09 Jul 2010 — Buffer overflow in Ruby 1.9.x before 1.9.1-p429 on Windows might allow local users to gain privileges via a crafted ARGF.inplace_mode value that is not properly handled when constructing the filenames of the backup files. Desbordamiento de búfer en Ruby v1.9.x anterior v1.9.1-p429 en Windows puede permitir a usuarios locales ganar privilegios mediante un valor ARGF.inplace_mode manipulado que no es correctamente manejado cuando construye los nombres de archivos de los ficheros backup • http://osdir.com/ml/ruby-talk/2010-07/msg00095.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 56%CPEs: 4EXPL: 4CVE-2009-4492 – Ruby 1.9.1 - WEBrick 'Terminal Escape Sequence in Logs' Command Injection
https://notcve.org/view.php?id=CVE-2009-4492
13 Jan 2010 — WEBrick 1.3.1 in Ruby 1.8.6 through patchlevel 383, 1.8.7 through patchlevel 248, 1.8.8dev, 1.9.1 through patchlevel 376, and 1.9.2dev writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to modify a window's title, or possibly execute arbitrary commands or overwrite files, via an HTTP request containing an escape sequence for a terminal emulator. WEBrick v1.3.1 en Ruby v1.8.6 del patchlevel 383, v1.8.7 al patchlevel 248, v1.8.8dev, 1.9.1 al patchlevel 37... • https://www.exploit-db.com/exploits/33489 •
CVSS: 10.0EPSS: 1%CPEs: 7EXPL: 0CVE-2009-4124
https://notcve.org/view.php?id=CVE-2009-4124
11 Dec 2009 — Heap-based buffer overflow in the rb_str_justify function in string.c in Ruby 1.9.1 before 1.9.1-p376 allows context-dependent attackers to execute arbitrary code via unspecified vectors involving (1) String#ljust, (2) String#center, or (3) String#rjust. NOTE: some of these details are obtained from third party information. Desbordamiento del búfer de la memoria dinámica en la función rb_str_justify en string.c en Ruby v1.9.1 en versiones anteriores a v1.9.1-p376 atacantes dependientes del contexto podrían ... • http://secunia.com/advisories/37660 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 2%CPEs: 2EXPL: 2CVE-2009-1904 – ruby: DoS vulnerability in BigDecimal
https://notcve.org/view.php?id=CVE-2009-1904
11 Jun 2009 — The BigDecimal library in Ruby 1.8.6 before p369 and 1.8.7 before p173 allows context-dependent attackers to cause a denial of service (application crash) via a string argument that represents a large number, as demonstrated by an attempted conversion to the Float data type. La librería BigDecimal en Ruby v1.8.6 anteriores p369 y v1.8.7, anteriores a p173 permite a los atacantes dependientes del contexto causar una denegación de servicio (caída de la aplicación) a través de un argumento de cadena de caracte... • https://github.com/NZKoz/bigdecimal-segfault-fix • CWE-189: Numeric Errors •
CVSS: 7.5EPSS: 2%CPEs: 2EXPL: 1CVE-2009-0642 – ruby: Incorrect checks for validity of X.509 certificates
https://notcve.org/view.php?id=CVE-2009-0642
18 Feb 2009 — ext/openssl/ossl_ocsp.c in Ruby 1.8 and 1.9 does not properly check the return value from the OCSP_basic_verify function, which might allow remote attackers to successfully present an invalid X.509 certificate, possibly involving a revoked certificate. ext/openssl/ossl_ocsp.c en Ruby v1.8 y v1.9 no comprueba adecuadamente el valor de retorno de la funcion OCSP_basic_verify, lo cual permitiria a atacantes remotos tener exito en la presentacion de un certificado X.509 invalido, posiblemente utilizando un cert... • http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=513528 • CWE-287: Improper Authentication •
CVSS: 7.8EPSS: 1%CPEs: 2EXPL: 1CVE-2008-4310 – Ruby 1.9 - 'WEBrick::HTTP::DefaultFileHandler' Crafted HTTP Request Denial of Service
https://notcve.org/view.php?id=CVE-2008-4310
09 Dec 2008 — httputils.rb in WEBrick in Ruby 1.8.1 and 1.8.5, as used in Red Hat Enterprise Linux 4 and 5, allows remote attackers to cause a denial of service (CPU consumption) via a crafted HTTP request. NOTE: this issue exists because of an incomplete fix for CVE-2008-3656. El archivo httputils.rb en WEBrick en Ruby versiones 1.8.1 y 1.8.5, tal y como es usado en versiones 4 y 5 de Red Hat Enterprise Linux, permite a los atacantes remotos causar una denegación de servicio (consumo de CPU) por medio de una petición HT... • https://www.exploit-db.com/exploits/32222 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 0%CPEs: 27EXPL: 1CVE-2008-3905 – ruby: use of predictable source port and transaction id in DNS requests done by resolv.rb module
https://notcve.org/view.php?id=CVE-2008-3905
04 Sep 2008 — resolv.rb in Ruby 1.8.5 and earlier, 1.8.6 before 1.8.6-p287, 1.8.7 before 1.8.7-p72, and 1.9 r18423 and earlier uses sequential transaction IDs and constant source ports for DNS requests, which makes it easier for remote attackers to spoof DNS responses, a different vulnerability than CVE-2008-1447. resolv.rb en Ruby 1.8.5 y versiones anteriores, 1.8.6 versiones anteriores a 1.8.6-p287, 1.8.7 versiones anteriores a 1.8.7-p72, y 1.9 r18423 y versiones anteriores utiliza transacciones secuenciales de IDs y p... • http://secunia.com/advisories/31430 • CWE-287: Improper Authentication •
CVSS: 7.5EPSS: 5%CPEs: 21EXPL: 2CVE-2008-3790 – Ruby 1.9 - REXML Remote Denial of Service
https://notcve.org/view.php?id=CVE-2008-3790
27 Aug 2008 — The REXML module in Ruby 1.8.6 through 1.8.6-p287, 1.8.7 through 1.8.7-p72, and 1.9 allows context-dependent attackers to cause a denial of service (CPU consumption) via an XML document with recursively nested entities, aka an "XML entity explosion." El módulo REXML en Ruby 1.8.6 hasta la versión 1.8.6-p287, 1.8.7 hasta 1.8.7-p72, y 1.9 permite que atacantes, dependiendo del contexto, provocar una denegación de servicio (agotamiento CPU) a través de un documento XML con entidades anidadas recursivamente, ta... • https://www.exploit-db.com/exploits/32292 • CWE-20: Improper Input Validation •