PT-2016-1514 · Ruby+1 · Ruby On Rails+1

Daniel Waterworth

Publicado

2016-01-31

Atualizado

2019-08-08

CVE-2015-7576

CVSS v2.0

4.3

Média

Vetor

AV:N/AC:M/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Ruby on Rails versions prior to 3.2.22.1 Ruby on Rails versions 4.0.x through 4.1.14 Ruby on Rails versions 4.2.x through 4.2.5 Ruby on Rails versions 5.x through 5.0.0.beta1

Description The issue is related to the http basic authenticate with method in the Basic Authentication implementation in Action Controller, which does not use a constant-time algorithm for verifying credentials. This makes it easier for remote attackers to bypass authentication by measuring timing differences. The vulnerability can be exploited by a remote attacker to bypass the authentication procedure.

Recommendations For Ruby on Rails versions prior to 3.2.22.1, update to version 3.2.22.1 or later. For Ruby on Rails versions 4.0.x through 4.1.14, update to version 4.1.14.1 or later. For Ruby on Rails versions 4.2.x through 4.2.5, update to version 4.2.5.1 or later. For Ruby on Rails versions 5.x through 5.0.0.beta1, update to version 5.0.0.beta1.1 or later.

Exploit

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-254

Identificadores relacionados

BDU:2016-00815

CVE-2015-7576

DLA-604-1

DSA-3464-1

GHSA-P692-7MM3-3FXG

GHSA-VWFG-QJ3R-6V3R

RHSA-2016:0296

RHSA-2016:0454

RHSA-2016:0455

SUSE-SU-2016:0435-1

SUSE-SU-2016:0457-1

SUSE-SU-2016:0600-1

SUSE-SU-2016:0618-1

SUSE-SU-2016:0623-1

SUSE-SU-2016:0857-1

SUSE-SU-2016:0858-1

SUSE-SU-2016:0968-1

SUSE-SU-2016:1146-1

SUSE-SU-2016_0623-1

SUSE-SU-2016_0968-1

SUSE-SU-2017:0475-1

Produtos afetados

Ruby On Rails

Suse

PT-2016-1514 · Ruby+1 · Ruby On Rails+1

CVE-2015-7576

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 95