CVE-2009-1904
CVSS v2.0
5 (Medium)
EPSS
2.51 % (90th)
Affected Products
1
Advisories
8
The BigDecimal library in Ruby 1.8.6 before p369 and 1.8.7 before p173 allows context-dependent attackers to cause a denial of service (application crash) via a string argument that represents a large number, as demonstrated by an attempted conversion to the Float data type.
Weaknesses
- CWE-189
- Numeric Errors
- CVE Status
- PUBLISHED
- CNA
- MITRE
- Published Date
-
2009-06-11 21:30:00
(15 years ago) - Updated Date
-
2017-09-29 01:34:38
(7 years ago)
Affected Products
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...