--- 
gem: rack-cache
cve: 2012-2671
osvdb: 83077
url: https://nvd.nist.gov/vuln/detail/CVE-2012-2671
title: rack-cache Rubygem Sensitive HTTP Header Caching Weakness
date: 2012-06-06

description: |
  Rack::Cache (rack-cache) contains a flaw related to the rubygem caching
  sensitive HTTP headers. This will result in a weakness that may make it
  easier for an attacker to gain access to a user's session via a specially
  crafted header.

cvss_v2: 7.5

patched_versions: 
  - ">= 1.2"