CVE-2008-3655
published 2008-08-13CVE-2008-3655: Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 does not properly restrict access to critical variables and…
PriorityP350high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
14.09%
96.1th percentile
Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 does not properly restrict access to critical variables and methods at various safe levels, which allows context-dependent attackers to bypass intended access restrictions via (1) untrace_var, (2) $PROGRAM_NAME, and (3) syslog at safe level 4, and (4) insecure methods at safe levels 1 through 3.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ruby-lang | ruby | <= 1.8.5 | — |
| ruby-lang | ruby | — | — |
| ruby-lang | ruby | — | — |
| ruby-lang | ruby | — | — |
| ruby-lang | ruby | — | — |
| ruby-lang | ruby | — | — |
| ruby-lang | ruby | — | — |
| ruby-lang | ruby | — | — |
| ruby-lang | ruby | — | — |
| ruby-lang | ruby | — | — |
| ruby-lang | ruby | — | — |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vendor_redhat7.5HIGH
vendor_ubuntu6.8MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
Ruby vulnerabilities
vendor_ubuntu·2008-10-10·CVSS 6.8
CVE-2008-3790 [MEDIUM] Ruby vulnerabilities
Title: Ruby vulnerabilities
Summary: Ruby vulnerabilities
Akira Tagoh discovered a vulnerability in Ruby which lead to an integer
overflow. If a user or automated system were tricked into running a
malicious script, an attacker could cause a denial of service or
possibly execute arbitrary code with the privileges of the user
invoking the program. (CVE-2008-2376)
Laurent Gaffie discovered that Ruby did not properly check for memory
allocation failures. If a user or automated system were tricked into
running a malicious script, an attacker could cause a denial of
service. (CVE-2008-3443)
Keita Yamaguchi discovered several safe level vulnerabilities in Ruby.
An attacker could use this to bypass intended access restrictions.
(CVE-2008-3655)
Keita Yamaguchi discovered that WEBrick in Ruby
Red Hat
ruby: multiple insufficient safe mode restrictions
vendor_redhat·2008-08-08·CVSS 7.5
CVE-2008-3655 [HIGH] ruby: multiple insufficient safe mode restrictions
ruby: multiple insufficient safe mode restrictions
Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 does not properly restrict access to critical variables and methods at various safe levels, which allows context-dependent attackers to bypass intended access restrictions via (1) untrace_var, (2) $PROGRAM_NAME, and (3) syslog at safe level 4, and (4) insecure methods at safe levels 1 through 3.
GHSA
GHSA-p524-ppf2-w36w: Ruby 1
ghsa_unreviewed·2022-05-02
CVE-2008-3655 [HIGH] GHSA-p524-ppf2-w36w: Ruby 1
Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 does not properly restrict access to critical variables and methods at various safe levels, which allows context-dependent attackers to bypass intended access restrictions via (1) untrace_var, (2) $PROGRAM_NAME, and (3) syslog at safe level 4, and (4) insecure methods at safe levels 1 through 3.
No detection rules found.
Exploit-DB
Ruby 1.9 dl - Module DL.dlopen Arbitrary Library Access
exploitdb·2008-08-11
CVE-2008-3657 Ruby 1.9 dl - Module DL.dlopen Arbitrary Library Access
Ruby 1.9 dl - Module DL.dlopen Arbitrary Library Access
---
source: https://www.securityfocus.com/bid/30644/info
Ruby is prone to multiple vulnerabilities that can be leveraged to bypass security restrictions or cause a denial of service:
- Multiple security-bypass vulnerabilities occur because of errors in the 'safe level' restriction implementation. Attackers can leverage these issues to make insecure function calls and perform 'Syslog' operations.
- An error affecting 'WEBrick::HHTP::DefaultFileHandler' can exhaust system resources and deny service to legitimate users.
- A flaw in 'dl' can allow attackers to call unauthorized functions.
Attackers can exploit these issues to perform unauthorized actions on affected applications. This may aid in compromising the application and pos
Exploit-DB
Ruby 1.9 - Safe Level Multiple Function Restriction Bypass
exploitdb·2008-08-11
CVE-2008-3655 Ruby 1.9 - Safe Level Multiple Function Restriction Bypass
Ruby 1.9 - Safe Level Multiple Function Restriction Bypass
---
source: https://www.securityfocus.com/bid/30644/info
Ruby is prone to multiple vulnerabilities that can be leveraged to bypass security restrictions or cause a denial of service:
- Multiple security-bypass vulnerabilities occur because of errors in the 'safe level' restriction implementation. Attackers can leverage these issues to make insecure function calls and perform 'Syslog' operations.
- An error affecting 'WEBrick::HHTP::DefaultFileHandler' can exhaust system resources and deny service to legitimate users.
- A flaw in 'dl' can allow attackers to call unauthorized functions.
Attackers can exploit these issues to perform unauthorized actions on affected applications. This may aid in compromising the application and
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=494401http://lists.apple.com/archives/security-announce/2009/May/msg00002.htmlhttp://secunia.com/advisories/31430http://secunia.com/advisories/31697http://secunia.com/advisories/32165http://secunia.com/advisories/32219http://secunia.com/advisories/32255http://secunia.com/advisories/32256http://secunia.com/advisories/32371http://secunia.com/advisories/32372http://secunia.com/advisories/33178http://secunia.com/advisories/35074http://security.gentoo.org/glsa/glsa-200812-17.xmlhttp://support.apple.com/kb/HT3549http://support.avaya.com/elmodocs2/security/ASA-2008-424.htmhttp://wiki.rpath.com/wiki/Advisories:rPSA-2008-0264http://www.debian.org/security/2008/dsa-1651http://www.debian.org/security/2008/dsa-1652http://www.redhat.com/support/errata/RHSA-2008-0895.htmlhttp://www.redhat.com/support/errata/RHSA-2008-0897.htmlhttp://www.ruby-lang.org/en/news/2008/08/08/multiple-vulnerabilities-in-ruby/http://www.securityfocus.com/archive/1/495884/100/0/threadedhttp://www.securityfocus.com/bid/30644http://www.securitytracker.com/id?1020656http://www.us-cert.gov/cas/techalerts/TA09-133A.htmlhttp://www.vupen.com/english/advisories/2008/2334http://www.vupen.com/english/advisories/2009/1297https://exchange.xforce.ibmcloud.com/vulnerabilities/44369https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11602https://usn.ubuntu.com/651-1/https://www.redhat.com/archives/fedora-package-announce/2008-October/msg00259.htmlhttps://www.redhat.com/archives/fedora-package-announce/2008-October/msg00299.htmlhttp://bugs.debian.org/cgi-bin/bugreport.cgi?bug=494401http://lists.apple.com/archives/security-announce/2009/May/msg00002.htmlhttp://secunia.com/advisories/31430http://secunia.com/advisories/31697http://secunia.com/advisories/32165http://secunia.com/advisories/32219http://secunia.com/advisories/32255http://secunia.com/advisories/32256http://secunia.com/advisories/32371http://secunia.com/advisories/32372http://secunia.com/advisories/33178http://secunia.com/advisories/35074http://security.gentoo.org/glsa/glsa-200812-17.xmlhttp://support.apple.com/kb/HT3549http://support.avaya.com/elmodocs2/security/ASA-2008-424.htmhttp://wiki.rpath.com/wiki/Advisories:rPSA-2008-0264http://www.debian.org/security/2008/dsa-1651http://www.debian.org/security/2008/dsa-1652http://www.redhat.com/support/errata/RHSA-2008-0895.htmlhttp://www.redhat.com/support/errata/RHSA-2008-0897.htmlhttp://www.ruby-lang.org/en/news/2008/08/08/multiple-vulnerabilities-in-ruby/http://www.securityfocus.com/archive/1/495884/100/0/threadedhttp://www.securityfocus.com/bid/30644http://www.securitytracker.com/id?1020656http://www.us-cert.gov/cas/techalerts/TA09-133A.htmlhttp://www.vupen.com/english/advisories/2008/2334http://www.vupen.com/english/advisories/2009/1297https://exchange.xforce.ibmcloud.com/vulnerabilities/44369https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11602https://usn.ubuntu.com/651-1/https://www.redhat.com/archives/fedora-package-announce/2008-October/msg00259.htmlhttps://www.redhat.com/archives/fedora-package-announce/2008-October/msg00299.html
2008-08-13
Published