Sha256: 0762f70be09f754d30d71e67bd3f133f43ce33e3cbaa53c5610736cdfc0ccc04

Contents?: true

Size: 491 Bytes

Versions: 6

Compression:

Stored size: 491 Bytes

Contents

---
engine: ruby
cve: 2010-2489
osvdb: 66040
url: http://www.osvdb.org/show/osvdb/66040
title: Ruby on Windows ARGF.inplace_mode Variable Local Overflow
date: 2010-07-02
description: |
  Buffer overflow in Ruby 1.9.x before 1.9.1-p429
  on Windows might allow local users to gain privileges via a crafted ARGF.inplace_mode
  value that is not properly handled when constructing the filenames of the backup
  files.
cvss_v2: 7.2
patched_versions:
  - ~> 1.8.7
  - ~> 1.9.1.429
  - ">= 1.9.2"

Version data entries

6 entries across 6 versions & 2 rubygems

Version Path
bundler-audit-0.7.0.1 data/ruby-advisory-db/rubies/ruby/CVE-2010-2489.yml
bundler-budit-0.6.2 data/ruby-advisory-db/rubies/ruby/OSVDB-66040.yml
bundler-budit-0.6.1 data/ruby-advisory-db/rubies/ruby/OSVDB-66040.yml
bundler-audit-0.6.1 data/ruby-advisory-db/rubies/ruby/OSVDB-66040.yml
bundler-audit-0.6.0 data/ruby-advisory-db/rubies/ruby/OSVDB-66040.yml
bundler-audit-0.5.0 data/ruby-advisory-db/rubies/ruby/OSVDB-66040.yml