Sha256: fe36e1ec3e6fe57f8b7d79fb1b285fbaf8829e27e578bc9ccba146c74f4311ab

Contents?: true

Size: 491 Bytes

Versions: 9

Compression:

Stored size: 491 Bytes

Contents

--- 
gem: fileutils
cve: 
osvdb: 90715
url: http://osvdb.org/show/osvdb/90715
title: fileutils Gem for Ruby files_utils.rb /tmp File Symlink Arbitrary File Overwrite
date: 2013-02-28
description: fileutils Gem for Ruby contains a flaw as the program creates temporary files insecurely. It is possible for a local attacker to use a symlink attack against temporary files created by files_utils.rb to cause the program to unexpectedly overwrite an arbitrary file.
cvss_v2: 
patched_versions:

Version data entries

9 entries across 9 versions & 2 rubygems

Version Path
bundler-audit-0.4.0 data/ruby-advisory-db/gems/fileutils/OSVDB-90715.yml
bundler-audit-0.3.1 data/ruby-advisory-db/gems/fileutils/OSVDB-90715.yml
mrjoy-bundler-audit-0.3.3 data/ruby-advisory-db/gems/fileutils/OSVDB-90715.yml
mrjoy-bundler-audit-0.3.2 data/ruby-advisory-db/gems/fileutils/OSVDB-90715.yml
mrjoy-bundler-audit-0.3.1 data/ruby-advisory-db/gems/fileutils/OSVDB-90715.yml
bundler-audit-0.3.0 data/ruby-advisory-db/gems/fileutils/OSVDB-90715.yml
mrjoy-bundler-audit-0.2.1 data/ruby-advisory-db/gems/fileutils/OSVDB-90715.yml
bundler-audit-0.2.0 data/ruby-advisory-db/gems/fileutils/OSVDB-90715.yml
mrjoy-bundler-audit-0.1.4 data/ruby-advisory-db/gems/fileutils/OSVDB-90715.yml