Sha256: c1050e43ff8f9ab7d8b7c4beb9a593f810430d893cecffbfdbbfac5df7cd8449

Contents?: true

Size: 454 Bytes

Versions: 5

Compression:

Stored size: 454 Bytes

Contents

---
gem: dragonfly
cve: 2013-1756
osvdb: 90647
url: http://www.osvdb.org/show/osvdb/90647
title: Dragonfly Gem for Ruby Crafted Request Parsing Remote Code Execution
date: 2013-02-19
description: |
  Dragonfly Gem for Ruby contains a flaw that is triggered during the parsing
  of a specially crafted request. This may allow a remote attacker to execute
  arbitrary code.
cvss_v2: 7.5
patched_versions:
  - ">= 0.9.13"
unaffected_versions:
  - "< 0.7.0"

Version data entries

5 entries across 5 versions & 2 rubygems

Version Path
bundler-budit-0.6.2 data/ruby-advisory-db/gems/dragonfly/OSVDB-90647.yml
bundler-budit-0.6.1 data/ruby-advisory-db/gems/dragonfly/OSVDB-90647.yml
bundler-audit-0.6.1 data/ruby-advisory-db/gems/dragonfly/OSVDB-90647.yml
bundler-audit-0.6.0 data/ruby-advisory-db/gems/dragonfly/OSVDB-90647.yml
bundler-audit-0.5.0 data/ruby-advisory-db/gems/dragonfly/OSVDB-90647.yml