4 matches found
Linux Distros Unpatched Vulnerability : CVE-2011-3187
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The tos method in actionpack/lib/actiondispatch/middleware/remoteip.rb in Ruby on Rails 3.0.5 does not validate the X-Forwarded-For header in requests from IP...
CVE-2011-3187
The tos method in actionpack/lib/actiondispatch/middleware/remoteip.rb in Ruby on Rails 3.0.5 does not validate the X-Forwarded-For header in requests from IP addresses on a Class C network, which might allow remote attackers to inject arbitrary text into log files or bypass intended address...
CVE-2011-3187
The tos method in actionpack/lib/actiondispatch/middleware/remoteip.rb in Ruby on Rails 3.0.5 does not validate the X-Forwarded-For header in requests from IP addresses on a Class C network, which might allow remote attackers to inject arbitrary text into log files or bypass intended address...
CVE-2011-3187
CVE-2011-3187 affects Ruby on Rails 3.0.5 where the to_s method in actionpack/lib/action_dispatch/middleware/remote_ip.rb does not validate the X-Forwarded-For header for requests from Class C networks. This could allow remote attackers to inject arbitrary text into log files or bypass intended a...