Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Mandrake Local Security Checks >> MDKSA-2006:192: ruby


Vulnerability Assessment Details

MDKSA-2006:192: ruby

Vulnerability Assessment Summary
Check for the version of the ruby package

Detailed Explanation for this Vulnerability Assessment

The remote host is missing the patch for the advisory MDKSA-2006:192 (ruby).

The CGI library in Ruby 1.8 permited a remote attacker to cause a Denial
of Service via an HTTP request with a multipart MIME body that
contained an invalid boundary specifier, which would result in an
infinite loop and CPU consumption.
Updated packages have been patched to correct this issue.

Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:192
Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2007 Tenable Network Security

Cables, Connectors

Dell Vostro 230 Motherboard P/N: 07N90W w/ C2D E7500 CPU
$19.99
Dell Vostro 230 Motherboard P/N: 07N90W w/ C2D E7500 CPU pictureASUS P4P800S SE, Socket 478, Intel (90-M8LBS5-G0UAY0Z) Motherboard
$26.48
ASUS P4P800S SE, Socket 478, Intel (90-M8LBS5-G0UAY0Z) Motherboard pictureHP Spectre 13-4005dx i7-500U 2.4GHz Motherboard w/ Heatsink P/N 801505-501
$349.99
HP Spectre 13-4005dx i7-500U 2.4GHz Motherboard w/ Heatsink P/N 801505-501 pictureHP Rp 5700 Heat Sink 438876-001 From 445757-001 Motherboard
$20.75
HP Rp 5700 Heat Sink 438876-001 From 445757-001 Motherboard picture


Discussions

No Discussions have been posted on this vulnerability.