PT-2018-3274 · Ruby+5 · Ruby+5
Ooooooo_Q
·
Publicado
2018-03-28
·
Atualizado
2020-06-09
·
CVE-2018-6914
CVSS v2.0
7.8
Alta
| Vetor | AV:N/AC:L/Au:N/C:N/I:C/A:N |
Name of the Vulnerable Software and Affected Versions
Ruby versions prior to 2.2.10
Ruby versions 2.3.x prior to 2.3.7
Ruby versions 2.4.x prior to 2.4.4
Ruby versions 2.5.x prior to 2.5.1
Ruby version 2.6.0-preview1
Description
The issue exists due to incorrect restriction of the directory path name with limited access in the Dir.mktmpdir method of the tmpdir library in Ruby. This could allow a remote attacker to write arbitrary files to the file system. The vulnerability might be exploited by using a .. (dot dot) in the prefix argument to create arbitrary directories or files.
Recommendations
For Ruby versions prior to 2.2.10, update to version 2.2.10 or later.
For Ruby versions 2.3.x prior to 2.3.7, update to version 2.3.7 or later.
For Ruby versions 2.4.x prior to 2.4.4, update to version 2.4.4 or later.
For Ruby versions 2.5.x prior to 2.5.1, update to version 2.5.1 or later.
For Ruby version 2.6.0-preview1, update to a later version.
Exploit
Correção
Path traversal
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Alt Linux
Centos
Red Hat
Ruby
Suse
Ubuntu