Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Ruby on Rails Data Processing Errors Vulnerability - CVE-2014-3916 - Vulnerability Database
Ruby on Rails

Ruby on Rails Data Processing Errors Vulnerability - CVE-2014-3916

Medium
Reference: CVE-2014-3916
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2014-3916
Title: Ruby on Rails Data Processing Errors Vulnerability
Overview:

The str_buf_cat function in string.c in Ruby 1.9.3 2.0.0 and 2.1 allows context-dependent attackers to cause a denial of service (segmentation fault and crash) via a long string.