Dual Ruby Vulnerabilities and How To Fix

Dual Ruby Vulnerabilities and How To Fix

Technology News

Web Services News

Technology News

Web Services News

RELATED NEWS

Maingear targets mid-range PC gamers with Alt-15 and Alt-17 laptops

Five Gadget Accessories that are Essential for Traveling

Post-Obama, India may get best of US technologies

BlackBerry PlayBook: New iPad Challenger?

LG to launch Feature Rich Android Smart phone?

India welcomes Obama support for UN seat: Krishna

'Presumptive' estimates of 2G spectrum loss: Auditor

Different estimates of 2G spectrum loss in auditor's report

Best Buy Black Friday Ads 2010 Make Buyers Smiling

Chemicals in cigarettes, French fries 'can increase Alzheimer's risk'

By Angsuman Chakraborty, Gaea News Network
Thursday, July 13, 2006

Two vulnerabilities have been reported in Ruby, which can be exploited to bypass safe level protection and replace methods called in trusted level as well as close untainted directory streams.

1. An error in the handling of the “alias” functionality can be exploited to bypass the safe level protection and replace methods called in the trusted level.

2. An error caused due to directory operations not being properly checked can be exploited to bypass the safe level protection and close untainted directory streams.

The vulnerabilities have been reported in version 1.8.4 and earlier.

Solution:
The vulnerabilities have been fixed in the current snapshot version and will also be fixed in the upcoming 1.8.5 version. via Secunia

Filed under: Headline News, How To, Tech Note, Technology, Web, Web Services

Discuss Bellow

YOUR VIEW POINT

NAME :	(REQUIRED)
MAIL :	(REQUIRED) will not be displayed
WEBSITE :	(OPTIONAL)

YOUR COMMENT :
	Submit Notify me of followup comments via e-mail

Older News