PT-2008-5397 · Ruby · Ruby On Rails

Robert Buchholz

Published

2008-09-30

Updated

2019-08-08

CVE-2008-4094

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Ruby on Rails versions prior to 2.1.1

Description The issue allows remote attackers to execute arbitrary SQL commands via the :limit and :offset parameters, related to ActiveRecord, ActiveSupport, ActiveResource, ActionPack, and ActionMailer. This is a SQL injection issue that can be exploited by attackers to execute malicious SQL commands.

Recommendations For versions prior to 2.1.1, update to version 2.1.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the :limit and :offset parameters in affected API endpoints until a patch is available. Avoid using the :limit and :offset parameters in queries that are executed with user-supplied input.

Exploit

Fix

RCE

SQL injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-89

Related Identifiers

CVE-2008-4094

GHSA-XF96-32Q2-9RW2

Affected Products

Ruby On Rails

PT-2008-5397 · Ruby · Ruby On Rails

CVE-2008-4094

Weakness Enumeration

Related Identifiers

Affected Products

References · 33