exploitDog

CVE-2006-6303

Опубликовано: 04 дек. 2006

Источник: redhat

Описание

The read_multipart function in cgi.rb in Ruby before 1.8.5-p2 does not properly detect boundaries in MIME multipart content, which allows remote attackers to cause a denial of service (infinite loop) via crafted HTTP requests, a different issue than CVE-2006-5467.

Отчет

Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-835

https://bugzilla.redhat.com/show_bug.cgi?id=218287ruby's cgi.rb vulnerable infinite loop DoS

Связанные уязвимости

CVE-2006-6303

ubuntu

больше 18 лет назад

The read_multipart function in cgi.rb in Ruby before 1.8.5-p2 does not properly detect boundaries in MIME multipart content, which allows remote attackers to cause a denial of service (infinite loop) via crafted HTTP requests, a different issue than CVE-2006-5467.

CVE-2006-6303

nvd

больше 18 лет назад

The read_multipart function in cgi.rb in Ruby before 1.8.5-p2 does not properly detect boundaries in MIME multipart content, which allows remote attackers to cause a denial of service (infinite loop) via crafted HTTP requests, a different issue than CVE-2006-5467.

CVE-2006-6303

debian

больше 18 лет назад

The read_multipart function in cgi.rb in Ruby before 1.8.5-p2 does not ...

GHSA-fx2r-qhmq-3jjp

github

больше 3 лет назад

The read_multipart function in cgi.rb in Ruby before 1.8.5-p2 does not properly detect boundaries in MIME multipart content, which allows remote attackers to cause a denial of service (infinite loop) via crafted HTTP requests, a different issue than CVE-2006-5467.