How to Buy
This script is Copyright (C) 2009-2016 Tenable Network Security, Inc.
The remote Gentoo host is missing one or more security-related
The remote host is affected by the vulnerability described in GLSA-200912-02
(Ruby on Rails: Multiple vulnerabilities)
The following vulnerabilities were discovered:
reported that lib/action_controller/cgi_process.rb removes the
:cookie_only attribute from the default session options
(CVE-2007-6077), due to an incomplete fix for CVE-2007-5380 (GLSA
Tobias Schlottke reported that the :limit and
:offset parameters of ActiveRecord::Base.find() are not properly
sanitized before being processed (CVE-2008-4094).
Coderrr reported that the CRSF protection in protect_from_forgery()
does not parse the text/plain MIME format (CVE-2008-7248).
Nate reported a documentation error that leads to the assumption
that a block returning nil passed to
authenticate_or_request_with_http_digest() would deny access to the
requested resource (CVE-2009-2422).
Brian Mastenbrook reported
an input sanitation flaw, related to multibyte characters
Gabe da Silveira reported an input sanitation
flaw in the strip_tags() function (CVE-2009-4214).
reported an information disclosure vulnerability related to HMAC
A remote attacker could send specially crafted requests to a vulnerable
application, possibly leading to the execution of arbitrary SQL
statements or a circumvention of access control. A remote attacker
could also conduct session fixation attacks to hijack a user's session
or bypass the CSRF protection mechanism, or furthermore conduct
Cross-Site Scripting attacks or forge a digest via multiple attempts.
There is no known workaround at this time.
See also :
All Ruby on Rails 2.3.x users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose '>=dev-ruby/rails-2.3.5'
All Ruby on Rails 2.2.x users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose '=dev-ruby/rails-2.2.3-r1'
NOTE: All applications using Ruby on Rails should also be configured to
use the latest version available by running 'rake rails:update' inside
the application directory.
Risk factor :
High / CVSS Base Score : 7.5
CVSS Temporal Score : 6.5
Public Exploit Available : true
Family: Gentoo Local Security Checks
Nessus Plugin ID: 43378 (gentoo_GLSA-200912-02.nasl)
Bugtraq ID: 311763627837142
CVE ID: CVE-2007-5380CVE-2007-6077CVE-2008-4094CVE-2008-7248CVE-2009-2422CVE-2009-3009CVE-2009-3086CVE-2009-4214
Upgrade to Nessus Professional today!
Start your free Nessus Cloud trial now!
Begin Free Trial
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.