CVE-2007-6077
published 2007-11-21CVE-2007-6077: The session fixation protection mechanism in cgi_process.rb in Rails 1.2.4, as used in Ruby on Rails, removes the :cookie_only attribute from the…
PriorityP424medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EPSS
2.51%
82.7th percentile
The session fixation protection mechanism in cgi_process.rb in Rails 1.2.4, as used in Ruby on Rails, removes the :cookie_only attribute from the DEFAULT_SESSION_OPTIONS constant, which effectively causes cookie_only to be applied only to the first instantiation of CgiRequest, which allows remote attackers to conduct session fixation attacks. NOTE: this is due to an incomplete fix for CVE-2007-5380.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | rails | < rails 1.2.6-1 (bookworm) | rails 1.2.6-1 (bookworm) |
| rubyonrails | rails | — | — |
| rubyonrails | rails | >= 0 < 1.2.6-1 | 1.2.6-1 |
| rubyonrails | rails | >= 0 < 1.2.6-1 | 1.2.6-1 |
| rubyonrails | rails | >= 0 < 1.2.6-1 | 1.2.6-1 |
| rubyonrails | rails | >= 0 < 1.2.6-1 | 1.2.6-1 |
| rubyonrails | rails | >= 0 < 1.2.6 | 1.2.6 |
CVSS provenance
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
ghsa6.8MEDIUM
osv6.8MEDIUM
vendor_debian6.8LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
session fixation protection mechanism in cgi_process.rb in Rails
ghsa·2017-10-24·CVSS 6.8
CVE-2007-6077 [MEDIUM] CWE-362 session fixation protection mechanism in cgi_process.rb in Rails
session fixation protection mechanism in cgi_process.rb in Rails
The session fixation protection mechanism in cgi_process.rb in Rails 1.2.4, as used in Ruby on Rails, removes the :cookie_only attribute from the DEFAULT_SESSION_OPTIONS constant, which effectively causes cookie_only to be applied only to the first instantiation of CgiRequest, which allows remote attackers to conduct session fixation attacks. NOTE: this is due to an incomplete fix for CVE-2007-5380.
OSV
session fixation protection mechanism in cgi_process.rb in Rails
osv·2017-10-24·CVSS 6.8
CVE-2007-6077 [MEDIUM] session fixation protection mechanism in cgi_process.rb in Rails
session fixation protection mechanism in cgi_process.rb in Rails
The session fixation protection mechanism in cgi_process.rb in Rails 1.2.4, as used in Ruby on Rails, removes the :cookie_only attribute from the DEFAULT_SESSION_OPTIONS constant, which effectively causes cookie_only to be applied only to the first instantiation of CgiRequest, which allows remote attackers to conduct session fixation attacks. NOTE: this is due to an incomplete fix for CVE-2007-5380.
OSV
CVE-2007-6077: The session fixation protection mechanism in cgi_process
osv·2007-11-21·CVSS 6.8
CVE-2007-6077 [MEDIUM] CVE-2007-6077: The session fixation protection mechanism in cgi_process
The session fixation protection mechanism in cgi_process.rb in Rails 1.2.4, as used in Ruby on Rails, removes the :cookie_only attribute from the DEFAULT_SESSION_OPTIONS constant, which effectively causes cookie_only to be applied only to the first instantiation of CgiRequest, which allows remote attackers to conduct session fixation attacks. NOTE: this is due to an incomplete fix for CVE-2007-5380.
Debian
CVE-2007-6077: rails - The session fixation protection mechanism in cgi_process.rb in Rails 1.2.4, as u...
vendor_debian·2007·CVSS 6.8
CVE-2007-6077 [MEDIUM] CVE-2007-6077: rails - The session fixation protection mechanism in cgi_process.rb in Rails 1.2.4, as u...
The session fixation protection mechanism in cgi_process.rb in Rails 1.2.4, as used in Ruby on Rails, removes the :cookie_only attribute from the DEFAULT_SESSION_OPTIONS constant, which effectively causes cookie_only to be applied only to the first instantiation of CgiRequest, which allows remote attackers to conduct session fixation attacks. NOTE: this is due to an incomplete fix for CVE-2007-5380.
Scope: local
bookworm: resolved (fixed in 1.2.6-1)
bullseye: resolved (fixed in 1.2.6-1)
forky: resolved (fixed in 1.2.6-1)
sid: resolved (fixed in 1.2.6-1)
trixie: resolved (fixed in 1.2.6-1)
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://dev.rubyonrails.org/changeset/8177http://dev.rubyonrails.org/ticket/10048http://docs.info.apple.com/article.html?artnum=307179http://lists.apple.com/archives/security-announce/2007/Dec/msg00002.htmlhttp://secunia.com/advisories/27781http://secunia.com/advisories/28136http://weblog.rubyonrails.org/2007/11/24/ruby-on-rails-1-2-6-security-and-maintenance-releasehttp://www.securityfocus.com/bid/26598http://www.us-cert.gov/cas/techalerts/TA07-352A.htmlhttp://www.vupen.com/english/advisories/2007/4009http://www.vupen.com/english/advisories/2007/4238http://dev.rubyonrails.org/changeset/8177http://dev.rubyonrails.org/ticket/10048http://docs.info.apple.com/article.html?artnum=307179http://lists.apple.com/archives/security-announce/2007/Dec/msg00002.htmlhttp://secunia.com/advisories/27781http://secunia.com/advisories/28136http://weblog.rubyonrails.org/2007/11/24/ruby-on-rails-1-2-6-security-and-maintenance-releasehttp://www.securityfocus.com/bid/26598http://www.us-cert.gov/cas/techalerts/TA07-352A.htmlhttp://www.vupen.com/english/advisories/2007/4009http://www.vupen.com/english/advisories/2007/4238
2007-11-21
Published