Launchpad CVE tracker

CVE 2005-1992

The XMLRPC server in utils.rb for the ruby library (libruby) 1.8 sets an invalid default value that prevents "security protection" using handlers, which allows remote attackers to execute arbitrary commands.

See the

CVE page on Mitre.org for more details.

References

MISC: http://www.securityfoc...
MISC: http://secunia.com/adv...
MISC: http://lists.apple.com...
MISC: http://www.debian.org/...
MISC: http://www.auscert.org...
MISC: http://www.ciac.org/ci...
MISC: http://www.redhat.com/...
MISC: http://www.novell.com/...
MISC: http://www.kb.cert.org...
MISC: http://blade.nagaokaut...
MISC: http://bugs.debian.org...
MISC: http://www2.ruby-lang....
MISC: https://oval.cisecurit...

Launchpad.net

CVE 2005-1992

Related bugs

References