Sha256: 267175e9fa2d5e3941c824bd4af5b3aa2c00289745001fdb8ad79529fc966857

Contents?: true

Size: 465 Bytes

Versions: 9

Compression:

Stored size: 465 Bytes

Contents

--- 
gem: fileutils
cve: 
osvdb: 90716
url: http://osvdb.org/show/osvdb/90716
title: fileutils Gem for Ruby Temporary Directory Hijacking Weakness
date: 2013-02-28
description: fileutils Gem for Ruby contains a flaw that is due to the program not verifying the existence of a directory before attempting to create it. This may allow a local attacker to create the directory in advance, thus owning any files subsequently written to it.
cvss_v2: 
patched_versions: 

Version data entries

9 entries across 9 versions & 2 rubygems

Version Path
bundler-audit-0.4.0 data/ruby-advisory-db/gems/fileutils/OSVDB-90716.yml
bundler-audit-0.3.1 data/ruby-advisory-db/gems/fileutils/OSVDB-90716.yml
mrjoy-bundler-audit-0.3.3 data/ruby-advisory-db/gems/fileutils/OSVDB-90716.yml
mrjoy-bundler-audit-0.3.2 data/ruby-advisory-db/gems/fileutils/OSVDB-90716.yml
mrjoy-bundler-audit-0.3.1 data/ruby-advisory-db/gems/fileutils/OSVDB-90716.yml
bundler-audit-0.3.0 data/ruby-advisory-db/gems/fileutils/OSVDB-90716.yml
mrjoy-bundler-audit-0.2.1 data/ruby-advisory-db/gems/fileutils/OSVDB-90716.yml
bundler-audit-0.2.0 data/ruby-advisory-db/gems/fileutils/OSVDB-90716.yml
mrjoy-bundler-audit-0.1.4 data/ruby-advisory-db/gems/fileutils/OSVDB-90716.yml