Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Ruby Permissions Privileges and Access Controls Vulnerability - CVE-2013-2065 - Vulnerability Database
Ruby

Ruby Permissions Privileges and Access Controls Vulnerability - CVE-2013-2065

Medium
Reference: CVE-2013-2065
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2013-2065
Title: Ruby Permissions Privileges and Access Controls Vulnerability
Overview:

(1) DL and (2) Fiddle in Ruby 1.9 before 1.9.3 patchlevel 426 and 2.0 before 2.0.0 patchlevel 195 do not perform taint checking for native functions which allows context-dependent attackers to bypass intended SAFE level restrictions.