Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2009-2422

The example code for the digest authentication functionality (http_authentication.rb) in Ruby on Rails before 2.3.3 defines an authenticate_or_request_with_http_digest block that returns nil instead of false when the user does not exist, which allows context-dependent attackers to bypass authentication for applications that are derived from this example by sending an invalid username without a password.

See the

CVE page on Mitre.org for more details.

References

MISC: http://n8.tumblr.com/p...
CONFIRM: http://weblog.rubyonra...
BID: 35579
SECUNIA: 35702
VUPEN: ADV-2009-1802
CONFIRM: http://support.apple.c...
APPLE: APPLE-SA-2010-03-29-1
XF: rubyonrails-validatedi...

Launchpad.net

CVE 2009-2422

Related bugs

References