Lucene search
RootSSV:60303HistoryJul 31, 2012 - 12:00 a.m.
Ruby on Rails 'authenticate_or_request_with_http_digest'方法拒绝服务漏洞
2012-07-3100:00:00
Root
www.seebug.org
40
0.009 Low
EPSS
Percentile
81.1%
BUGTRAQ ID: 54704
CVE ID: CVE-2012-3424
Ruby on Rails简称RoR或Rails,是一个使用Ruby语言写的开源Web应用框架,它是严格按照MVC结构开发的。
Ruby on Rails 3.0.16、3.1.7、3.2.7之前版本在使用了"with_http_digest" 控制器助手方法的actionpack/lib/action_controller/metal/http_authentication.rb中存在错误,可被恶意用户利用造成拒绝服务。
0
Ruby on Rails 3.2.x
Ruby on Rails 3.1.x
Ruby on Rails 3.0.x
厂商补丁:
Ruby on Rails
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
Related
openvas
openvas
FreeBSD Ports: rubygem-actionpack
2012-08-10 00:00:00
FreeBSD Ports: rubygem-actionpack
2012-08-10 00:00:00
Fedora Update for rubygem-actionpack FEDORA-2012-11363
2012-08-30 00:00:00
ubuntucve
ubuntucve
CVE-2012-3424
2012-08-08 00:00:00
debiancve
debiancve
CVE-2012-3424
2012-08-08 10:26:00
osv
osv
actionpack Improper Authentication vulnerability
2017-10-24 18:33:38
gitlab
gitlab
DoS Vulnerability in authenticate_or_request_with_http_digest
2012-08-08 00:00:00
github
github
actionpack Improper Authentication vulnerability
2017-10-24 18:33:38
nessus
nessus
Fedora 16 : rubygem-actionpack-3.0.10-8.fc16 (2012-11353)
2012-08-10 00:00:00
FreeBSD : rubygem-actionpack -- Denial of Service (ae2fa87c-4bca-4138-8be1-67ce2a19b3a8)
2012-07-27 00:00:00
Fedora 17 : rubygem-actionpack-3.0.11-6.fc17 (2012-11363)
2012-08-10 00:00:00
cve
cve
CVE-2012-3424
2012-08-08 10:26:00
freebsd
freebsd
rubygem-actionpack -- Denial of Service
2012-07-26 00:00:00
prion
prion
Design/Logic Flaw
2012-08-08 10:26:00
rubygems
rubygems
fedora
fedora
[SECURITY] Fedora 17 Update: rubygem-actionpack-3.0.11-6.fc17
2012-08-09 23:18:43
[SECURITY] Fedora 17 Update: rubygem-actionpack-3.0.11-7.fc17
2012-08-22 21:11:17
[SECURITY] Fedora 16 Update: rubygem-actionpack-3.0.10-8.fc16
2012-08-09 23:26:17
ibm
ibm
redhat
redhat
(RHSA-2013:0154) Critical: Ruby on Rails security update
2013-01-10 20:37:00
(RHSA-2013:0582) Moderate: Red Hat OpenShift Enterprise 1.1.1 update
2013-02-28 00:00:00