CVE-2008-1145

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Directory traversal vulnerability in WEBrick in Ruby 1.8 before 1.8.5-p115 and 1.8.6-p114, and 1.9 through 1.9.0-1, when running on systems that support backslash (\) path separators or case-insensitive file names, allows remote attackers to access arbitrary files via (1) "..%5c" (encoded backslash) sequences or (2) filenames that match patterns in the :NondisclosureName option.

References

http://lists.apple.com/archives/security-announce/2008//Jun/msg00002.html

http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00006.html

http://secunia.com/advisories/29232

http://secunia.com/advisories/29357

http://secunia.com/advisories/29536

http://secunia.com/advisories/30802

http://secunia.com/advisories/31687

http://secunia.com/advisories/32371

http://support.apple.com/kb/HT2163

http://wiki.rpath.com/Advisories:rPSA-2008-0123

http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0123

http://www.kb.cert.org/vuls/id/404515

http://www.mandriva.com/security/advisories?name=MDVSA-2008:141

http://www.mandriva.com/security/advisories?name=MDVSA-2008:142

http://www.redhat.com/support/errata/RHSA-2008-0897.html

http://www.ruby-lang.org/en/news/2008/03/03/webrick-file-access-vulnerability/

http://www.securityfocus.com/archive/1/489205/100/0/threaded

http://www.securityfocus.com/archive/1/489218/100/0/threaded

http://www.securityfocus.com/archive/1/490056/100/0/threaded

http://www.securityfocus.com/bid/28123

http://www.securitytracker.com/id?1019562

http://www.vupen.com/english/advisories/2008/0787

http://www.vupen.com/english/advisories/2008/1981/references

https://exchange.xforce.ibmcloud.com/vulnerabilities/41010

https://issues.rpath.com/browse/RPL-2338

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10937

https://www.exploit-db.com/exploits/5215

https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00338.html

https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00354.html

Details

Source: MITRE

Published: 2008-03-04

Updated: 2018-10-11

Type: CWE-22

Risk Information

CVSS v2

Base Score: 5

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Impact Score: 2.9

Exploitability Score: 10

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:webrick:webrick:*:*:*:*:*:*:*:* versions up to 1.8 (inclusive)

cpe:2.3:a:webrick:webrick:*:*:*:*:*:*:*:* versions up to 1.8_p114 (inclusive)

cpe:2.3:a:webrick:webrick:*:*:*:*:*:*:*:* versions up to 1.8_p115 (inclusive)

cpe:2.3:a:webrick:webrick:*:*:*:*:*:*:*:* versions up to 1.9 (inclusive)

cpe:2.3:a:webrick:webrick:*:*:*:*:*:*:*:* versions up to 1.9_1 (inclusive)

Tenable Plugins

View all (13 total)

IDNameProductFamilySeverity
67752Oracle Linux 4 / 5 : ruby (ELSA-2008-0897)NessusOracle Linux Local Security Checks
high
41228SuSE9 Security Update : Ruby (YOU Patch Number 12214)NessusSuSE Local Security Checks
critical
40121openSUSE Security Update : ruby (ruby-123)NessusSuSE Local Security Checks
critical
37401Mandriva Linux Security Advisory : ruby (MDVSA-2008:141)NessusMandriva Local Security Checks
critical
34502CentOS 4 / 5 : ruby (CESA-2008:0897)NessusCentOS Local Security Checks
high
34466RHEL 4 / 5 : ruby (RHSA-2008:0897)NessusRed Hat Local Security Checks
high
34028openSUSE 10 Security Update : ruby (ruby-5483)NessusSuSE Local Security Checks
critical
34020SuSE 10 Security Update : Ruby (ZYPP Patch Number 5484)NessusSuSE Local Security Checks
critical
33282Mac OS X Multiple Vulnerabilities (Security Update 2008-004)NessusMacOS X Local Security Checks
critical
33281Mac OS X 10.5.x < 10.5.4 Multiple VulnerabilitiesNessusMacOS X Local Security Checks
critical
31433Fedora 7 : ruby-1.8.6.114-1.fc7 (2008-2458)NessusFedora Local Security Checks
medium
31432Fedora 8 : ruby-1.8.6.114-1.fc8 (2008-2443)NessusFedora Local Security Checks
medium
4564Mac OS X < 10.5.4 Multiple VulnerabilitiesNessus Network MonitorGeneric
critical