Lucene search
K

13 matches found

OpenVAS
OpenVAS
added 2010/02/19 12:0 a.m.27 views

Ubuntu Update for ruby1.9 vulnerabilities USN-900-1

Ubuntu Update for Linux kernel vulnerabilities USN-900-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN9001.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for ruby1.9 vulnerabilities USN-900-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...

10CVSS0.9AI score0.15684EPSS
Exploits5References2
OpenVAS
OpenVAS
added 2010/02/19 12:0 a.m.43 views

Ubuntu: Security Advisory (USN-900-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.7AI score0.15684EPSS
Exploits5References2
Tenable Nessus
Tenable Nessus
added 2010/02/17 12:0 a.m.36 views

Ubuntu 8.10 / 9.04 / 9.10 : ruby1.9 vulnerabilities (USN-900-1)

Emmanouel Kellinis discovered that Ruby did not properly handle certain string operations. An attacker could exploit this issue and possibly execute arbitrary code with application privileges. CVE-2009-4124 Giovanni Pellerano, Alessandro Tanasi, and Francesco Ongaro discovered that Ruby did not...

10CVSS6.1AI score0.15684EPSS
Exploits5References4
Ubuntu
Ubuntu
added 2010/02/16 2:18 p.m.64 views

USN-900-1: Ruby vulnerabilities

Emmanouel Kellinis discovered that Ruby did not properly handle certain string operations. An attacker could exploit this issue and possibly execute arbitrary code with application privileges. CVE-2009-4124 Giovanni Pellerano, Alessandro Tanasi, and Francesco Ongaro discovered that Ruby did not...

10CVSS6.1AI score0.15684EPSS
Exploits5
OpenVAS
OpenVAS
added 2009/12/23 12:0 a.m.24 views

Ruby Interpreter Heap Overflow Vulnerability (Windows) - Dec09

This host is installed with Ruby Interpreter and is prone to Heap Overflow vulnerability. OpenVAS Vulnerability Test $Id: secpodrubyheapbofvulnwindec09.nasl 8196 2017-12-20 12:13:37Z cfischer $ Ruby Interpreter Heap Overflow Vulnerability Windows - Dec09 Authors: Sujit Ghosal Copyright: Copyright...

10CVSS0.8AI score0.03875EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2009/12/23 12:0 a.m.39 views

Ruby Interpreter Heap Overflow Vulnerability (Dec 2009) - Linux

Ruby Interpreter is prone to a heap overflow vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ruby-lang:ruby";...

10CVSS6.9AI score0.03875EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2009/12/23 12:0 a.m.28 views

Ruby Interpreter Heap Overflow Vulnerability (Dec 2009) - Windows

Ruby Interpreter is prone to a heap overflow vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ruby-lang:ruby";...

10CVSS6.9AI score0.03875EPSS
Exploits1References4
seebug.org
seebug.org
added 2009/12/15 12:0 a.m.27 views

Ruby "rb_str_justify()"缓冲区溢出漏洞

CVE ID:CVE-2009-4124 Ruby是一款功能强大的面向对象的脚本语言。 Stringljust, Stringcenter和Stringrjust中存在堆溢出漏洞,允许攻击者在部分条件下执行任意代码。 问题存在于string.c代码中的"rbstrjustify"函数。目前没有详细漏洞细节提供。 Ruby 1.9.x Ruby 1.9.1-p376已经修复此漏洞,建议用户下载使用: ftp://ftp.ruby-lang.org/pub/ruby/1.9/ruby-1.9.1-p376.tar.bz2...

10CVSS6.5AI score0.03875EPSS
Exploits1
OpenVAS
OpenVAS
added 2009/12/14 12:0 a.m.23 views

FreeBSD Ports: ruby

The remote host is missing an update to the system as announced in the referenced advisory. VID eab8c3bd-e50c-11de-9cd0-001a926c7637 OpenVAS Vulnerability Test $ Description: Auto generated from VID eab8c3bd-e50c-11de-9cd0-001a926c7637 Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

10CVSS0.2AI score0.03875EPSS
Exploits1
OpenVAS
OpenVAS
added 2009/12/14 12:0 a.m.21 views

FreeBSD Ports: ruby

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

10CVSS6.4AI score0.03875EPSS
Exploits1References2
CVE
CVE
added 2009/12/11 4:0 p.m.59 views

CVE-2009-4124

CVE-2009-4124 affects Ruby 1.9.x where a heap-based buffer overflow in rb_str_justify (string.c) allows context-dependent attackers to execute arbitrary code via String#ljust, String#center, or String#rjust. Affected versions are Ruby 1.9.1 prior to 1.9.1-p376. The vulnerability is classified wit...

10CVSS7.6AI score0.03875EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2009/12/11 4:0 p.m.26 views

CVE-2009-4124

Heap-based buffer overflow in the rbstrjustify function in string.c in Ruby 1.9.1 before 1.9.1-p376 allows context-dependent attackers to execute arbitrary code via unspecified vectors involving 1 Stringljust, 2 Stringcenter, or 3 Stringrjust. NOTE: some of these details are obtained from third...

7.7AI score0.03875EPSS
Exploits1References6
RubySec
RubySec
added 2009/12/07 12:0 a.m.22 views

CVE-2009-4124 ruby: Heap-based buffer overflow in the rb_str_justify() function

Heap-based buffer overflow in the rbstrjustify function in string.c in Ruby 1.9.1 before 1.9.1-p376 allows context-dependent attackers to execute arbitrary code via unspecified vectors involving 1 Stringljust, 2 Stringcenter, or 3 Stringrjust. NOTE: some of these details are obtained from third...

10CVSS7.7AI score0.03875EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder