Ruby on Rails before 1.1.5 allows remote attackers to execute Ruby code with "severe" or "serious" impact via a File Upload request with an HTTP header that modifies the LOAD_PATH variable, a different vulnerability than CVE-2006-4112.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2006-08-14T21:00:00
Updated: 2006-08-23T09:00:00
Reserved: 2006-08-14T00:00:00
Link: CVE-2006-4111
JSON object: View
NVD Information
Status : Analyzed
Published: 2006-08-14T21:04:00.000
Modified: 2019-08-08T14:38:03.667
Link: CVE-2006-4111
JSON object: View
Redhat Information
No data.
CWE