Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2012-5380Path Traversal in Ruby

CWE-22Path Traversal4 documents4 sources
Severity
6.7MEDIUMNVD
EPSS
0.4%
top 41.09%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Ruby-lang Ruby
Timeline
PublishedOct 11
Latest updateMay 17

Description

Untrusted search path vulnerability in the installation functionality in Ruby 1.9.3-p194, when installed in the top-level C:\ directory, might allow local users to gain privileges via a Trojan horse DLL in the C:\Ruby193\bin directory, which may be added to the PATH system environment variable by an administrator, as demonstrated by a Trojan horse wlbsctrl.dll file used by the "IKE and AuthIP IPsec Keying Modules" system service in Windows Vista SP1, Windows Server 2008 SP2, Windows 7 SP1, and W

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:HExploitability: 0.8 | Impact: 5.9

Affected Packages1 packages

NVDruby-lang/ruby1.9.3

🔴Vulnerability Details

2
GHSA
GHSA-jxcg-xrvh-r75f: ** DISPUTED ** Untrusted search path vulnerability in the installation functionality in Ruby 12022-05-17
CVEList
CVE-2012-5380: Untrusted search path vulnerability in the installation functionality in Ruby 12012-10-11

💥Exploits & PoCs

1
Exploit-DB
IKE and AuthIP IPsec Keyring Modules Service (IKEEXT) - Missing DLL (Metasploit)2013-09-06
CVE-2012-5380 — Path Traversal in Ruby-lang Ruby | cvebase