Lucene search
Ubuntu.comUB:CVE-2012-4522HistoryOct 15, 2012 - 12:00 a.m.
CVE-2012-4522
2012-10-1500:00:00
ubuntu.com
ubuntu.com
11
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.004 Low
EPSS
Percentile
73.0%
The rb_get_path_check function in file.c in Ruby 1.9.3 before patchlevel
286 and Ruby 2.0.0 before r37163 allows context-dependent attackers to
create files in unexpected locations or with unexpected names via a NUL
byte in a file path.
Notes
| Author | Note |
|---|---|
| seth-arnold | open(βfoo\0barβ, βwβ) { |
Related
fedora
fedora
[SECURITY] Fedora 18 Update: ruby-1.9.3.286-19.fc18
2012-10-18 03:50:20
[SECURITY] Fedora 17 Update: ruby-1.9.3.286-18.fc17
2012-10-22 01:59:29
[SECURITY] Fedora 17 Update: ruby-1.9.3.392-29.fc17
2013-03-05 23:33:43
openvas
openvas
FreeBSD Ports: ruby
2012-11-26 00:00:00
FreeBSD Ports: ruby
2012-11-26 00:00:00
Oracle: Security Advisory (ELSA-2013-0129)
2015-10-06 00:00:00
cve
cve
CVE-2012-4522
2012-11-24 20:55:00
nessus
nessus
Fedora 18 : ruby-1.9.3.286-19.fc18 (2012-16071)
2012-10-18 00:00:00
Fedora 17 : ruby-1.9.3.286-18.fc17 (2012-16086)
2012-10-22 00:00:00
seebug
seebug
Ruby ζ¬ε°ζδ»Άεε»ΊζΌζ΄(CVE-2012-4522)
2012-10-23 00:00:00
prion
prion
Path traversal
2012-11-24 20:55:00
freebsd
freebsd
rubygems
rubygems
oraclelinux
oraclelinux
ruby security and bug fix update
2013-01-11 00:00:00
redhat
redhat
(RHSA-2013:0129) Moderate: ruby security and bug fix update
2013-01-08 00:00:00
(RHSA-2013:0582) Moderate: Red Hat OpenShift Enterprise 1.1.1 update
2013-02-28 00:00:00
veracode
veracode
Arbitrary Code Execution
2019-05-02 04:45:35
ubuntu
ubuntu
Ruby vulnerabilities
2012-10-23 00:00:00
centos
centos
ruby security update
2013-01-09 20:36:59
debian
debian
[SECURITY] [DLA 235-1] ruby1.9.1 security update
2015-05-30 20:45:15
osv
osv
ruby1.9.1 - security update
2015-05-30 00:00:00
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.004 Low
EPSS
Percentile
73.0%
Related for UB:CVE-2012-4522