Arbitrary Code Injection in ruby

Do your applications use this vulnerable package? Test your applications

Overview

Ruby through 2.4.7, 2.5.x through 2.5.6, and 2.6.x through 2.6.4 allows HTTP Response Splitting. If a program using WEBrick inserts untrusted input into the response header, an attacker can exploit it to insert a newline character to split a header, and inject malicious content to deceive clients. NOTE: this issue exists because of an incomplete fix for CVE-2017-17742, which addressed the CRLF vector, but did not address an isolated CR or an isolated LF.

References

Bugtraq Mailing List
Bugtraq Mailing List
CONFIRM
CONFIRM
CONFIRM
CONFIRM
CVE Details
Debian Security Advisory
Debian Security Advisory
Debian Security Announcement
Debian Security Announcement
Debian Security Tracker
GENTOO
HackerOne Report
MISC
MLIST
SUSE
Ubuntu CVE Tracker

Attack Vector

Network
Attack Complexity

Low
Privileges Required

None
User Interaction

None
Scope

Unchanged
Confidentiality

None
Integrity

Low
Availability

None

CVE: CVE-2019-16254
CWE: CWE-74
Snyk ID: SNYK-ALPINE39-RUBY-491884
Disclosed: 26 Nov, 2019
Published: 13 Nov, 2019

Arbitrary Code Injection
Affecting ruby package, versions <2.5.7-r0

Overview

References

CVSS Score

Arbitrary Code Injection Affecting ruby package, versions <2.5.7-r0

Overview

References

Arbitrary Code Injection
Affecting ruby package, versions <2.5.7-r0