Lucene search
K

15 matches found

Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.31 views

Oracle Linux 3 / 4 : ruby (ELSA-2006-0604 / ELSA-2006-0729)

Updated ruby packages that fix security issues are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Ruby is an interpreted scripting language for object-oriented programming. Users of Ruby should upgrade to these updated packages...

6.4CVSS7AI score0.05739EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2009/10/10 12:0 a.m.24 views

SLES9: Security update for ruby

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: ruby For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5013651 within the SuSE...

6.4CVSS6.4AI score0.05739EPSS
Exploits0
OpenVAS
OpenVAS
added 2009/10/10 12:0 a.m.26 views

SLES9: Security update for ruby

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: ruby For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5013651 within the SuSE...

6.4CVSS6.4AI score0.05739EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.18 views

Debian: Security Advisory (DSA-1157)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.6AI score0.10192EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2007/12/13 12:0 a.m.21 views

SuSE 10 Security Update : ruby (ZYPP Patch Number 1946)

An attacker could bypass the 'safe level' checks. CVE-2006-3694 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid29570; scriptversion"1.12";...

6.4CVSS7.4AI score0.05739EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2007/10/17 12:0 a.m.28 views

openSUSE 10 Security Update : ruby (ruby-1948)

An attacker could bypass the 'safe level' checks CVE-2006-3694. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update ruby-1948. The text description of this plugin is C SUSE LLC...

6.4CVSS7.4AI score0.05739EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2007/01/17 12:0 a.m.32 views

Fedora Core 4 : ruby-1.8.4-3.fc4 (2006-842)

Thu Jul 20 2006 Akira TAGOH - 1.8.4-3 - security fixes CVE-2006-3694 - ruby-1.8.4-fix-insecure-dir-operation.patch : - ruby-1.8.4-fix-insecure-regexp-modification.patch: fixed the insecure operations in the certain safe-level restrictions. 199538 - ruby-1.8.4-fix-alias-safe-level.patch: fixed to...

6.4CVSS7.2AI score0.05739EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2007/01/17 12:0 a.m.34 views

Fedora Core 6 : ruby-1.8.5.2-1.fc6 (2006-1441)

Mon Dec 11 2006 Akira TAGOH - 1.8.5.2-1 - security fix release. 218289 - Fri Oct 27 2006 Akira TAGOH - 1.8.5-4 - security fix release. - ruby-1.8.5-cgi-CVE-2006-5467.patch: fix a CGI multipart parsing bug that causes the denial of service. 212396 - Sun Oct 1 2006 Jesse Keating - 1.8.5-3 - rebuilt...

6.4CVSS7.2AI score0.05739EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2006/10/14 12:0 a.m.24 views

Debian DSA-1139-1 : ruby1.6 - missing privilege checks

It was discovered that the interpreter for the Ruby language does not properly maintain 'safe levels' for aliasing, directory accesses and regular expressions, which might lead to a bypass of security restrictions. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...

6.4CVSS7.2AI score0.05739EPSS
Exploits0References3
Debian
Debian
added 2006/08/27 7:51 p.m.38 views

[SECURITY] [DSA 1157-1] New ruby1.8 packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 1157-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff August 27th, 2006 http://www.debian.org/security/faq -...

7.5CVSS6.5AI score0.10192EPSS
Exploits1
securityvulns
securityvulns
added 2006/08/04 12:0 a.m.46 views

[SECURITY] [DSA 1139-1] New ruby1.6 packages fix privilege escalation

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1139-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff August 3rd, 2006 http://www.debian.org/security/faq -...

6.4CVSS0.1AI score0.05739EPSS
Exploits0
Debian
Debian
added 2006/08/03 5:35 p.m.23 views

[SECURITY] [DSA 1139-1] New ruby1.6 packages fix privilege escalation

-------------------------------------------------------------------------- Debian Security Advisory DSA 1139-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff August 3rd, 2006 http://www.debian.org/security/faq -...

6.4CVSS6AI score0.05739EPSS
Exploits0
Cent OS
Cent OS
added 2006/07/31 12:23 a.m.64 views

irb, ruby security update

CentOS Errata and Security Advisory CESA-2006:0604-01 Updated ruby packages that fix security issues are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Ruby is an interpreted scripting language for object-oriented programming. A...

6.4CVSS7AI score0.05739EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2006/07/27 8:36 p.m.35 views

Moderate: Red Hat Security Advisory: ruby security update

Updated ruby packages that fix security issues are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Ruby is an interpreted scripting language for object-oriented programming. A number of flaws were found in the safe-level...

6.4CVSS6.9AI score0.05739EPSS
Exploits0References3
CVE
CVE
added 2006/07/19 1:0 a.m.90 views

CVE-2006-3694

CVE-2006-3694 refers to multiple vulnerabilities in Ruby prior to 1.8.5 that allow remote attackers to bypass certain security checks. The core issue is a bypass of the interpreter’s safe-level restrictions via unspecified vectors involving (1) the alias function and (2) directory operations, ena...

6.4CVSS6.5AI score0.05739EPSS
Exploits0References25Affected Software1
Rows per page
Query Builder