Lucene search
RubySecRUBY:MAIL-2012-2139-81631HistoryMar 13, 2012 - 8:00 p.m.
CVE-2012-2139 rubygem-mail: directory traversal
2012-03-1320:00:00
RubySec
rubysec.com
5
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.033 Low
EPSS
Percentile
91.3%
Directory traversal vulnerability in lib/mail/network/delivery_methods/file_delivery.rb
in the Mail gem before 2.4.4 for Ruby allows remote attackers to read arbitrary
files via a … (dot dot) in the to parameter.
References
Related
osv
osv
Mail Gem Path Traversal vulnerability
2017-10-24 18:33:38
debiancve
debiancve
CVE-2012-2139
2012-07-18 18:55:01
cvelist
cvelist
CVE-2012-2139
2012-07-18 18:00:00
github
github
Mail Gem Path Traversal vulnerability
2017-10-24 18:33:38
cve
cve
CVE-2012-2139
2012-07-18 18:55:01
prion
prion
Directory traversal
2012-07-18 18:55:00
nvd
nvd
CVE-2012-2139
2012-07-18 18:55:01
freebsd
freebsd
rubygem-mail -- multiple vulnerabilities
2012-03-14 00:00:00
nessus
nessus
openvas
openvas
Fedora Update for rubygem-actionmailer FEDORA-2012-7535
2012-05-22 00:00:00
Fedora Update for rubygem-mail FEDORA-2012-7619
2012-08-30 00:00:00
Fedora Update for rubygem-mail FEDORA-2012-7619
2012-08-30 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: rubygem-actionmailer-3.0.11-2.fc17
2012-05-26 06:47:52
[SECURITY] Fedora 16 Update: rubygem-actionmailer-3.0.10-2.fc16
2012-05-19 06:58:39
[SECURITY] Fedora 15 Update: rubygem-actionmailer-3.0.5-3.fc15
2012-05-19 06:58:09
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.033 Low
EPSS
Percentile
91.3%
Related for RUBY:MAIL-2012-2139-81631