Sha256: 0c04c9ce81386426bbb4fe985bab0b4b60373bc4aeb88c131df6d14a2ad5b97c

Contents?: true

Size: 490 Bytes

Versions: 3

Compression:

Stored size: 490 Bytes

Contents

---
gem: fog-dragonfly
cve: 2013-1756
osvdb: 90647
url: http://www.osvdb.org/show/osvdb/90647
title: Dragonfly Gem for Ruby Crafted Request Parsing Remote Code Execution
date: 2013-02-19
description: |
  Dragonfly Gem for Ruby contains a flaw that is triggered during the parsing
  of a specially crafted request. This may allow a remote attacker to execute
  arbitrary code.

  This gem has been renamed. Please use "dragonfly" from now on.
cvss_v2: 7.5
unaffected_versions:
  - "< 0.7.0"

Version data entries

3 entries across 3 versions & 1 rubygems

Version Path
bundler-audit-0.6.1 data/ruby-advisory-db/gems/fog-dragonfly/OSVDB-90647.yml
bundler-audit-0.6.0 data/ruby-advisory-db/gems/fog-dragonfly/OSVDB-90647.yml
bundler-audit-0.5.0 data/ruby-advisory-db/gems/fog-dragonfly/OSVDB-90647.yml