[FREEBSD:76562594-1F19-11DB-B7D4-0008743BF21A] ruby -- multiple vulnerabilities
Severity
Medium
Affected Packages
1
CVEs
1
Secunia reports:
Two vulnerabilities have been reported in Ruby, which can
be exploited by malicious people to bypass certain security
restrictions.
An error in the handling of the "alias" functionality
can be exploited to bypass the safe level protection and
replace methods called in the trusted level.
An error caused due to directory operations not being
properly checked can be exploited to bypass the safe
level protection and close untainted directory streams.
Package | Affected Version |
---|---|
pkg:freebsd/ruby | > 1.6.*, < 1.8.* |
- ID
- FREEBSD:76562594-1F19-11DB-B7D4-0008743BF21A
- Severity
- medium
- Severity from
- CVE-2006-3694
- URL
- http://vuxml.freebsd.org/freebsd/76562594-1f19-11db-b7d4-0008743bf21a.html
- Published
-
2006-07-12T00:00:00
(18 years ago) - Modified
-
2006-07-29T00:00:00
(18 years ago) - Rights
- FreeBSD VuXML Security Team
- Other Advisories
Source | # ID | Name | URL |
---|---|---|---|
FreeBSD VuXML | http://secunia.com/advisories/21009/ | ||
FreeBSD VuXML | http://jvn.jp/jp/JVN%2383768862/index.html | ||
FreeBSD VuXML | http://jvn.jp/jp/JVN%2313947696/index.html |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:freebsd/ruby | ruby | > 1.6.* < 1.8.* |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |