Multiple unspecified vulnerabilities in Ruby before 1.8.5 allow remote attackers to bypass "safe level" checks via unspecified vectors involving (1) the alias function and (2) "directory operations".

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact None

AV:N/AC:L/Au:N/C:P/I:P/A:N
Vendors Products
Yukihiro Matsumoto
  • Ruby

Configuration 1 [-]

OR cpe:2.3:a:yukihiro_matsumoto:ruby:1.8.2:*:*:*:*:*:*:*
cpe:2.3:a:yukihiro_matsumoto:ruby:1.8.3:*:*:*:*:*:*:*
cpe:2.3:a:yukihiro_matsumoto:ruby:1.8.4:*:*:*:*:*:*:*
References
Link Resource
ftp://patches.sgi.com/support/free/security/advisories/20060801-01-P
http://jvn.jp/jp/JVN%2313947696/index.html
http://jvn.jp/jp/JVN%2383768862/index.html
http://lists.freebsd.org/pipermail/freebsd-security/2006-July/003907.html
http://lists.freebsd.org/pipermail/freebsd-security/2006-July/003915.html
http://secunia.com/advisories/21009 Patch Vendor Advisory
http://secunia.com/advisories/21233 Patch Vendor Advisory
http://secunia.com/advisories/21236 Patch Vendor Advisory
http://secunia.com/advisories/21272 Patch Vendor Advisory
http://secunia.com/advisories/21337 Patch Vendor Advisory
http://secunia.com/advisories/21598
http://secunia.com/advisories/21657
http://secunia.com/advisories/21749
http://www.debian.org/security/2006/dsa-1139 Patch Vendor Advisory
http://www.debian.org/security/2006/dsa-1157
http://www.mandriva.com/security/advisories?name=MDKSA-2006:134
http://www.novell.com/linux/security/advisories/2006_21_sr.html
http://www.osvdb.org/27144
http://www.osvdb.org/27145
http://www.redhat.com/support/errata/RHSA-2006-0604.html Patch Vendor Advisory
http://www.securityfocus.com/bid/18944 Patch
http://www.ubuntu.com/usn/usn-325-1 Patch
http://www.vupen.com/english/advisories/2006/2760
https://exchange.xforce.ibmcloud.com/vulnerabilities/27725
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9983
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2006-07-19T01:00:00

Updated: 2017-10-10T00:57:01

Reserved: 2006-07-18T00:00:00

Link: CVE-2006-3694

JSON object: View

cve-icon NVD Information

Status : Modified

Published: 2006-07-21T14:03:00.000

Modified: 2017-10-11T01:31:05.937

Link: CVE-2006-3694

JSON object: View

cve-icon Redhat Information

No data.

CWE