Sha256: 9f71dfb92b99cb89084592feb4ce9c3a4774d970c01006c7baf4e953f5d0f2c0

Contents?: true

Size: 543 Bytes

Versions: 5

Compression:

Stored size: 543 Bytes

Contents

---
gem: paratrooper-pingdom
cve: 2014-1233
osvdb: 101847
url: http://www.osvdb.org/show/osvdb/101847
title: paratrooper-pingdom Gem for Ruby /lib/paratrooper-pingdom.rb API Login Credentials Local Disclosure
date: 2013-12-26
description: |
  paratrooper-pingdom Gem for Ruby contains a flaw in
  /lib/paratrooper-pingdom.rb. The issue is triggered when the script exposes
  API login credentials, allowing a local attacker to gain access to the API
  key, username, and password for the API login by monitoring the process tree.
cvss_v2: 2.1

Version data entries

5 entries across 5 versions & 2 rubygems

Version Path
bundler-budit-0.6.2 data/ruby-advisory-db/gems/paratrooper-pingdom/OSVDB-101847.yml
bundler-budit-0.6.1 data/ruby-advisory-db/gems/paratrooper-pingdom/OSVDB-101847.yml
bundler-audit-0.6.1 data/ruby-advisory-db/gems/paratrooper-pingdom/OSVDB-101847.yml
bundler-audit-0.6.0 data/ruby-advisory-db/gems/paratrooper-pingdom/OSVDB-101847.yml
bundler-audit-0.5.0 data/ruby-advisory-db/gems/paratrooper-pingdom/OSVDB-101847.yml