Contents

require 'spec_helper'

describe "The CVE-2011-3009 vulnerability" do
	before(:all) do
		@check = Dawn::Kb::CVE_2011_3009.new
		# @check.debug = true
	end
  it "fires if ruby version is vulnerable (1.8.6-p111)" do
    @check.detected_ruby = {:engine=>'ruby', :version=>"1.8.6", :patchlevel=>"p111"}
    @check.vuln?.should    == true
  end
  it "fires if ruby version is vulnerable (1.8.5-p111)" do
    @check.detected_ruby = {:engine=>'ruby', :version=>"1.8.5", :patchlevel=>"p111"}
    @check.vuln?.should    == true
  end
  it "doesn't fire if ruby version is not vulnerable (1.8.6-p112)" do
    @check.detected_ruby = {:engine=>'ruby', :version=>"1.8.6", :patchlevel=>"p112"}
    @check.vuln?.should    == false
  end
  it "doesn't fire if ruby version is not vulnerable (1.9.2-p112)" do
    @check.detected_ruby = {:engine=>'ruby', :version=>"1.9.2", :patchlevel=>"p112"}
    @check.vuln?.should    == false
  end

end

Version data entries

11 entries across 11 versions & 1 rubygems

Version	Path
dawnscanner-1.6.1	spec/lib/kb/cve_2011_3009_spec.rb
dawnscanner-1.6.0	spec/lib/kb/cve_2011_3009_spec.rb
dawnscanner-1.5.2	spec/lib/kb/cve_2011_3009_spec.rb
dawnscanner-1.5.1	spec/lib/kb/cve_2011_3009_spec.rb
dawnscanner-1.5.0	spec/lib/kb/cve_2011_3009_spec.rb
dawnscanner-1.4.2	spec/lib/kb/cve_2011_3009_spec.rb
dawnscanner-1.4.1	spec/lib/kb/cve_2011_3009_spec.rb
dawnscanner-1.4.0	spec/lib/kb/cve_2011_3009_spec.rb
dawnscanner-1.3.5	spec/lib/kb/cve_2011_3009_spec.rb
dawnscanner-1.3.1	spec/lib/kb/cve_2011_3009_spec.rb
dawnscanner-1.3.0	spec/lib/kb/cve_2011_3009_spec.rb