Contents

require 'spec_helper'
describe "The CVE-2011-3187 vulnerability" do
	before(:all) do
		@check = Codesake::Dawn::Kb::CVE_2011_3187.new
		# @check.debug = true
	end
  it "fires when vulnerable rails version it has been found (3.0.5)" do
    @check.dependencies = [{:name=>'rails', :version=>'3.0.5'}]
    @check.vuln?.should be_true
  end
  it "doesn't fire when safe rails version it has been found (3.0.6)" do
    @check.dependencies = [{:name=>'rails', :version=>'3.0.6'}]
    @check.vuln?.should be_false
  end
  it "doesn't fire when safe rails version it has been found (3.1.6)" do
    @check.dependencies = [{:name=>'rails', :version=>'3.1.6'}]
    @check.vuln?.should be_false
  end
  it "doesn't fire when safe rails version it has been found (2.3.16)" do
    @check.dependencies = [{:name=>'rails', :version=>'2.3.16'}]
    @check.vuln?.should be_false
  end
          # self.safe_dependencies = [{:name=>"rails", :version=>['3.0.6']}]
end

Version data entries

16 entries across 16 versions & 2 rubygems

Version	Path
dawnscanner-1.2.99	spec/lib/kb/cve_2011_3187_spec.rb
codesake-dawn-1.2.99	spec/lib/kb/cve_2011_3187_spec.rb
codesake-dawn-1.2.0	spec/lib/kb/cve_2011_3187_spec.rb
codesake-dawn-1.1.3	spec/lib/kb/cve_2011_3187_spec.rb
codesake-dawn-1.1.2	spec/lib/kb/cve_2011_3187_spec.rb
codesake-dawn-1.1.1	spec/lib/kb/cve_2011_3187_spec.rb
codesake-dawn-1.1.0	spec/lib/kb/cve_2011_3187_spec.rb
codesake-dawn-1.1.0.rc2	spec/lib/kb/cve_2011_3187_spec.rb
codesake-dawn-1.1.0.rc1	spec/lib/kb/cve_2011_3187_spec.rb
codesake-dawn-1.0.6	spec/lib/kb/cve_2011_3187_spec.rb
codesake-dawn-1.0.5	spec/lib/kb/cve_2011_3187_spec.rb
codesake-dawn-1.0.4	spec/lib/kb/cve_2011_3187_spec.rb
codesake-dawn-1.0.3	spec/lib/kb/cve_2011_3187_spec.rb
codesake-dawn-1.0.2	spec/lib/kb/cve_2011_3187_spec.rb
codesake-dawn-1.0.1	spec/lib/kb/cve_2011_3187_spec.rb
codesake-dawn-1.0.0	spec/lib/kb/cve_2011_3187_spec.rb