PT-2015-6338 · Ruby+2 · Rubygems+2

Jonathan Claudius

Publicado

2015-06-24

Atualizado

2025-09-29

CVE-2015-3900

CVSS v2.0

5.0

Média

Vetor

AV:N/AC:L/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions RubyGems versions 2.0.x through 2.0.16 RubyGems versions 2.2.x through 2.2.4 RubyGems versions 2.4.x through 2.4.7

Description The issue allows remote attackers to redirect requests to arbitrary domains via a crafted DNS SRV record, which is referred to as a "DNS hijack attack." This occurs because the hostname is not validated when fetching gems or making API requests.

Recommendations For RubyGems versions 2.0.x through 2.0.16, update to version 2.0.16 or later. For RubyGems versions 2.2.x through 2.2.4, update to version 2.2.4 or later. For RubyGems versions 2.4.x through 2.4.7, update to version 2.4.7 or later.

Exploit

Correção

RCE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-350CWE-254CWE-20

Identificadores relacionados

ALSA-2025_16880

ALT-PU-2016-2061

CVE-2015-3900

GHSA-QV62-XFJ6-32XM

GHSA-WP3J-RVFP-624H

MGASA-2015-0345

OPENSUSE-SU-2017_1128-1

OPENSUSE-SU-2024:10090-1

OPENSUSE-SU-2024:10481-1

RHSA-2015:1657

SUSE-SU-2017:1067-1

Produtos afetados

Alt Linux

Rubygems

Suse

PT-2015-6338 · Ruby+2 · Rubygems+2

CVE-2015-3900

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 51