The FreeBSD Ports package rubygem-activemodel before 3.2.4 allows remote attackers to perform SQL injection attacks via nested query parameters
Reporter | Title | Published | Views | Family All 169 |
---|---|---|---|---|
![]() | Security update for rubygem-actionpack (important) | 21 Aug 201219:08 | β | suse |
![]() | Security update for rubygem-activerecord (important) | 21 Aug 201220:08 | β | suse |
![]() | rubygem-actionpack/activerecord-2_3 (important) | 9 Aug 201218:08 | β | suse |
![]() | Security update for rubygem-actionpack (important) | 21 Aug 201220:08 | β | suse |
![]() | Security update for rubygem-activerecord (important) | 21 Aug 201219:08 | β | suse |
![]() | ruby on rails to 2.3.16 (important) | 12 Feb 201310:10 | β | suse |
![]() | ruby on rails to 2.3.16 (important) | 12 Feb 201311:04 | β | suse |
![]() | Security update for rubygem-merb-core (important) | 20 Mar 201317:04 | β | suse |
![]() | FreeBSD Ports: rubygem-activemodel | 10 Aug 201200:00 | β | openvas |
![]() | openSUSE: Security Advisory for rubygem-actionpack/activerecord-2_3 (openSUSE-SU-2012:0978-1) | 13 Dec 201200:00 | β | openvas |
# SPDX-FileCopyrightText: 2012 E-Soft Inc.
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.71520");
script_tag(name:"cvss_base", value:"6.4");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:P/A:N");
script_cve_id("CVE-2012-2660", "CVE-2012-2661");
script_version("2023-07-26T05:05:09+0000");
script_tag(name:"last_modification", value:"2023-07-26 05:05:09 +0000 (Wed, 26 Jul 2023)");
script_tag(name:"creation_date", value:"2012-08-10 03:22:17 -0400 (Fri, 10 Aug 2012)");
script_name("FreeBSD Ports: rubygem-activemodel");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2012 E-Soft Inc.");
script_family("FreeBSD Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/freebsd", "ssh/login/freebsdrel");
script_tag(name:"insight", value:"The following package is affected: rubygem-activemodel
CVE-2012-2660
actionpack/lib/action_dispatch/http/request.rb in Ruby on Rails before
3.0.13, 3.1.x before 3.1.5, and 3.2.x before 3.2.4 does not properly
consider differences in parameter handling between the Active Record
component and the Rack interface, which allows remote attackers to
bypass intended database-query restrictions and perform NULL checks
via a crafted request, as demonstrated by certain '[nil]' values, a
related issue to CVE-2012-2694.
CVE-2012-2661
The Active Record component in Ruby on Rails 3.0.x before 3.0.13,
3.1.x before 3.1.5, and 3.2.x before 3.2.4 does not properly implement
the passing of request data to a where method in an ActiveRecord
class, which allows remote attackers to conduct certain SQL injection
attacks via nested query parameters that leverage unintended
recursion, a related issue to CVE-2012-2695.");
script_tag(name:"solution", value:"Update your system with the appropriate patches or
software upgrades.");
script_xref(name:"URL", value:"https://groups.google.com/forum/?fromgroups#!topic/rubyonrails-security/8SA-M3as7A8");
script_xref(name:"URL", value:"https://groups.google.com/forum/?fromgroups#!topic/rubyonrails-security/dUaiOOGWL1k");
script_xref(name:"URL", value:"http://www.vuxml.org/freebsd/748aa89f-d529-11e1-82ab-001fd0af1a4c.html");
script_tag(name:"summary", value:"The remote host is missing an update to the system
as announced in the referenced advisory.");
script_tag(name:"qod_type", value:"package");
script_tag(name:"solution_type", value:"VendorFix");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-bsd.inc");
vuln = FALSE;
txt = "";
bver = portver(pkg:"rubygem-activemodel");
if(!isnull(bver) && revcomp(a:bver, b:"3.2.4")<0) {
txt += "Package rubygem-activemodel version " + bver + " is installed which is known to be vulnerable.\n";
vuln = TRUE;
}
if(vuln) {
security_message(data:txt);
} else if (__pkg_match) {
exit(99);
}
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. ContactΒ us for a demo andΒ discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo