CVE-2011-1005

The safe-level feature in Ruby 1.8.6 through 1.8.6-420, 1.8.7 through 1.8.7-330, and 1.8.8dev allows context-dependent attackers to modify strings via the Exception#to_s method, as demonstrated by changing an intended pathname.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:P/A:N
redhatCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 82%
VendorProductVersion
ruby-langruby
1.8.6
ruby-langruby
1.8.6-420
ruby-langruby
1.8.7
ruby-langruby
1.8.7-330
ruby-langruby
1.8.8:dev
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
ruby1.8
precise
not-affected
oneiric
not-affected
natty
Fixed 1.8.7.302-2ubuntu0.1
released
maverick
Fixed 1.8.7.299-2ubuntu0.1
released
lucid
Fixed 1.8.7.249-2ubuntu0.1
released
karmic
ignored
hardy
ignored
dapper
ignored
ruby1.9
precise
dne
oneiric
dne
natty
dne
maverick
dne
lucid
not-affected
karmic
ignored
hardy
ignored
dapper
ignored
ruby1.9.1
precise
Fixed 1.9.3.0-1ubuntu2.2
released
oneiric
not-affected
natty
not-affected
maverick
ignored
lucid
not-affected
karmic
ignored
hardy
dne
dapper
dne
Common Weakness Enumeration
References
http://lists.apple.com/archives/security-announce/2012/May/msg00001.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054422.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054436.html
http://osvdb.org/70957
http://secunia.com/advisories/43420
http://secunia.com/advisories/43573
http://support.apple.com/kb/HT5281
http://www.mandriva.com/security/advisories?name=MDVSA-2011:097
http://www.mandriva.com/security/advisories?name=MDVSA-2011:098
http://www.openwall.com/lists/oss-security/2011/02/21/2
http://www.openwall.com/lists/oss-security/2011/02/21/5
http://www.redhat.com/support/errata/RHSA-2011-0908.html
http://www.redhat.com/support/errata/RHSA-2011-0909.html
http://www.redhat.com/support/errata/RHSA-2011-0910.html
http://www.ruby-lang.org/en/news/2011/02/18/exception-methods-can-bypass-safe/
http://www.securityfocus.com/bid/46458
http://www.vupen.com/english/advisories/2011/0539
https://bugzilla.redhat.com/show_bug.cgi?id=678920
http://lists.apple.com/archives/security-announce/2012/May/msg00001.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054422.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054436.html
http://osvdb.org/70957
http://secunia.com/advisories/43420
http://secunia.com/advisories/43573
http://support.apple.com/kb/HT5281
http://www.mandriva.com/security/advisories?name=MDVSA-2011:097
http://www.mandriva.com/security/advisories?name=MDVSA-2011:098
http://www.openwall.com/lists/oss-security/2011/02/21/2
http://www.openwall.com/lists/oss-security/2011/02/21/5
http://www.redhat.com/support/errata/RHSA-2011-0908.html
http://www.redhat.com/support/errata/RHSA-2011-0909.html
http://www.redhat.com/support/errata/RHSA-2011-0910.html
http://www.ruby-lang.org/en/news/2011/02/18/exception-methods-can-bypass-safe/
http://www.securityfocus.com/bid/46458
http://www.vupen.com/english/advisories/2011/0539
https://bugzilla.redhat.com/show_bug.cgi?id=678920