PT-2019-6721 · Ruby · Distributed Ruby
Published
2019-11-18
·
Updated
2019-11-22
·
CVE-2011-5331
CVSS v2.0
7.5
High
| Vector | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Distributed Ruby (aka DRuby) version 1.8
Description
The issue is related to how Distributed Ruby (aka DRuby) version 1.8 handles instance eval.
Recommendations
For Distributed Ruby (aka DRuby) version 1.8, consider restricting the use of instance eval until a patch is available.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Distributed Ruby