Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Ruby Resource Management Errors Vulnerability - CVE-2014-6438 - Vulnerability Database
Ruby

Ruby Resource Management Errors Vulnerability - CVE-2014-6438

High
Reference: CVE-2014-6438
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2014-6438
Title: Ruby Resource Management Errors Vulnerability
Overview:

The URI.decode_www_form_component method in Ruby before 1.9.2-p330 allows remote attackers to cause a denial of service (catastrophic regular expression backtracking resource consumption or application crash) via a crafted string.