This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Summuary | |
|---|---|
| CPE Name | cpe:/a:yukihiro_matsumoto:ruby:1.8 |
| Detail | |||
|---|---|---|---|
| Vendor | Yukihiro_Matsumoto | First view | 2004-10-20 |
| Product | Ruby | Last view | 2006-12-06 |
| Version | 1.8 | Type | Application |
| Edition | |||
| Language | |||
| Update | |||
| CPE Product | cpe:/a:yukihiro_matsumoto:ruby | ||
Activity : Yearly
Related : CVE
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 5 | 2006-12-06 | CVE-2006-6303 | Network | Low | None Requ... | |
| 5 | 2006-10-27 | CVE-2006-5467 | Network | Low | None Requ... | |
| 5 | 2006-04-20 | CVE-2006-1931 | Network | Low | None Requ... | |
| 7.5 | 2005-10-07 | CVE-2005-2337 | Network | Low | None Requ... | |
| 7.5 | 2005-06-20 | CVE-2005-1992 | Network | Low | None Requ... | |
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 5 | 2005-03-01 | CVE-2004-0983 | Network | Low | None Requ... | |
| 2.1 | 2004-10-20 | CVE-2004-0755 | Local | Low | None Requ... |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 100% (2) | CWE-399 | Resource Management Errors |
Oval Markup Language : Definitions
| OvalID | Name |
|---|---|
| oval:org.mitre.oval:def:11128 | The FileStore capability in CGI::Session for Ruby before 1.8.1, and possibly ... |
| oval:org.mitre.oval:def:10268 | The CGI module in Ruby 1.6 before 1.6.8, and 1.8 before 1.8.2, allows remote ... |
| oval:org.mitre.oval:def:10819 | The XMLRPC server in utils.rb for the ruby library (libruby) 1.8 sets an inva... |
| oval:org.mitre.oval:def:10564 | Ruby 1.6.x up to 1.6.8, 1.8.x up to 1.8.2, and 1.9.0 development up to 2005-0... |
| oval:org.mitre.oval:def:11100 | The HTTP/XMLRPC server in Ruby before 1.8.2 uses blocking sockets, which allo... |
| id | Name |
|---|---|
| oval:org.mitre.oval:def:10185 | The cgi.rb CGI library for Ruby 1.8 allows remote attackers to cause a denial... |
| oval:org.mitre.oval:def:10529 | The read_multipart function in cgi.rb in Ruby before 1.8.5-p2 does not proper... |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 34238 | Ruby cgi.rb read_multipart Function Crafted HTTP Request DoS |
| 34237 | Ruby cgi.rb Crafted HTTP Request DoS |
| 24972 | Ruby HTTP/XMLRPC Blocking Sockets DoS |
| 19610 | Ruby eval.c safe_level Restriction Bypass |
| 17407 | Ruby XMLRPC Server Unspecified Arbitrary Command Execution |
| id | Description |
|---|---|
| 11534 | Ruby cgi.rb Malformed HTTP Request CPU Utilization DoS |
| 8845 | Ruby CGI Session Management Insecure File Creation |
