Sha256: 07326733bff045fdaf0d32839171aa83b62f77bf4dc52bfeef964f0d32f2ae56

Contents?: true

Size: 453 Bytes

Versions: 8

Compression:

Stored size: 453 Bytes

Contents

---
gem: nori
cve: 2013-0285
osvdb: 90196
url: http://osvdb.org/show/osvdb/90196
title: Ruby Gem nori Parameter Parsing Remote Code Execution
date: 2013-01-10

description: |
  The Ruby Gem nori has a parameter parsing error that may allow an attacker
  to execute arbitrary code. This vulnerability has to do with type casting
  during parsing, and is related to CVE-2013-0156.

cvss_v2: 7.5

patched_versions:
  - ~> 1.0.3
  - ~> 1.1.4
  - ">= 2.0.2"

Version data entries

8 entries across 8 versions & 3 rubygems

Version Path
bundler-budit-0.6.2 data/ruby-advisory-db/gems/nori/OSVDB-90196.yml
bundler-budit-0.6.1 data/ruby-advisory-db/gems/nori/OSVDB-90196.yml
bundler-audit-0.6.1 data/ruby-advisory-db/gems/nori/OSVDB-90196.yml
bundler-audit-0.6.0 data/ruby-advisory-db/gems/nori/OSVDB-90196.yml
bundler-audit-0.5.0 data/ruby-advisory-db/gems/nori/OSVDB-90196.yml
bundler-audit-0.4.0 data/ruby-advisory-db/gems/nori/OSVDB-90196.yml
bundler-audit-0.3.1 data/ruby-advisory-db/gems/nori/OSVDB-90196.yml
mrjoy-bundler-audit-0.3.3 data/ruby-advisory-db/gems/nori/OSVDB-90196.yml