CVE-2006-4112 - Vulnerability Details - OpenCVE

Unspecified vulnerability in the "dependency resolution mechanism" in Ruby on Rails 1.1.0 through 1.1.5 allows remote attackers to execute arbitrary Ruby code via a URL that is not properly handled in the routing code, which leads to a denial of service (application hang) or "data loss," a different vulnerability than CVE-2006-4111.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Rubyonrails	Rails

Configuration 1 [-]

OR	cpe:2.3:a:rubyonrails:rails:1.1.0:::::::*
	cpe:2.3:a:rubyonrails:rails:1.1.1:::::::*
	cpe:2.3:a:rubyonrails:rails:1.1.2:::::::*
	cpe:2.3:a:rubyonrails:rails:1.1.3:::::::*
	cpe:2.3:a:rubyonrails:rails:1.1.4:::::::*

No data.

References

Link	Providers
http://secunia.com/advisories/21424
http://secunia.com/advisories/21466
http://secunia.com/advisories/21749
http://securitytracker.com/id?1016673
http://weblog.rubyonrails.org/2006/8/10/rails-1-1-6-backports-and-full-disclosure
http://www.gentoo.org/security/en/glsa/glsa-200608-20.xml
http://www.kb.cert.org/vuls/id/699540
http://www.novell.com/linux/security/advisories/2006_21_sr.html
http://www.securityfocus.com/archive/1/442934/100/0/threaded
http://www.securityfocus.com/bid/19454
https://exchange.xforce.ibmcloud.com/vulnerabilities/28364

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2006-08-14T21:00:00

Updated: 2024-08-07T18:57:45.869Z

Reserved: 2006-08-14T00:00:00

Link: CVE-2006-4112

Vulnrichment

No data.

NVD

Status : Modified

Published: 2006-08-14T21:04:00.000

Modified: 2024-11-21T00:15:11.430

Link: CVE-2006-4112

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-08-09T00:00:00", "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the \"dependency resolution mechanism\" in Ruby on Rails 1.1.0 through 1.1.5 allows remote attackers to execute arbitrary Ruby code via a URL that is not properly handled in the routing code, which leads to a denial of service (application hang) or \"data loss,\" a different vulnerability than CVE-2006-4111."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-17T20:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "21466", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/21466"}, {"name": "21749", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/21749"}, {"name": "19454", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/19454"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://weblog.rubyonrails.org/2006/8/10/rails-1-1-6-backports-and-full-disclosure"}, {"name": "rubyonrails-url-code-execution(28364)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28364"}, {"name": "SUSE-SR:2006:021", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://www.novell.com/linux/security/advisories/2006_21_sr.html"}, {"name": "20060811 Security Vulnerability in Ruby on Rails 1.1.x", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/442934/100/0/threaded"}, {"name": "GLSA-200608-20", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "http://www.gentoo.org/security/en/glsa/glsa-200608-20.xml"}, {"name": "VU#699540", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "http://www.kb.cert.org/vuls/id/699540"}, {"name": "21424", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/21424"}, {"name": "1016673", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1016673"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-4112", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Unspecified vulnerability in the \"dependency resolution mechanism\" in Ruby on Rails 1.1.0 through 1.1.5 allows remote attackers to execute arbitrary Ruby code via a URL that is not properly handled in the routing code, which leads to a denial of service (application hang) or \"data loss,\" a different vulnerability than CVE-2006-4111."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "21466", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/21466"}, {"name": "21749", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/21749"}, {"name": "19454", "refsource": "BID", "url": "http://www.securityfocus.com/bid/19454"}, {"name": "http://weblog.rubyonrails.org/2006/8/10/rails-1-1-6-backports-and-full-disclosure", "refsource": "CONFIRM", "url": "http://weblog.rubyonrails.org/2006/8/10/rails-1-1-6-backports-and-full-disclosure"}, {"name": "rubyonrails-url-code-execution(28364)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28364"}, {"name": "SUSE-SR:2006:021", "refsource": "SUSE", "url": "http://www.novell.com/linux/security/advisories/2006_21_sr.html"}, {"name": "20060811 Security Vulnerability in Ruby on Rails 1.1.x", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/442934/100/0/threaded"}, {"name": "GLSA-200608-20", "refsource": "GENTOO", "url": "http://www.gentoo.org/security/en/glsa/glsa-200608-20.xml"}, {"name": "VU#699540", "refsource": "CERT-VN", "url": "http://www.kb.cert.org/vuls/id/699540"}, {"name": "21424", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/21424"}, {"name": "1016673", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1016673"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T18:57:45.869Z"}, "title": "CVE Program Container", "references": [{"name": "21466", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/21466"}, {"name": "21749", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/21749"}, {"name": "19454", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/19454"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://weblog.rubyonrails.org/2006/8/10/rails-1-1-6-backports-and-full-disclosure"}, {"name": "rubyonrails-url-code-execution(28364)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28364"}, {"name": "SUSE-SR:2006:021", "tags": ["vendor-advisory", "x_refsource_SUSE", "x_transferred"], "url": "http://www.novell.com/linux/security/advisories/2006_21_sr.html"}, {"name": "20060811 Security Vulnerability in Ruby on Rails 1.1.x", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/442934/100/0/threaded"}, {"name": "GLSA-200608-20", "tags": ["vendor-advisory", "x_refsource_GENTOO", "x_transferred"], "url": "http://www.gentoo.org/security/en/glsa/glsa-200608-20.xml"}, {"name": "VU#699540", "tags": ["third-party-advisory", "x_refsource_CERT-VN", "x_transferred"], "url": "http://www.kb.cert.org/vuls/id/699540"}, {"name": "21424", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/21424"}, {"name": "1016673", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1016673"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-4112", "datePublished": "2006-08-14T21:00:00", "dateReserved": "2006-08-14T00:00:00", "dateUpdated": "2024-08-07T18:57:45.869Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:rubyonrails:rails:1.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "9E13DAEA-F118-4CB2-88A5-54E3327B6B9E", "vulnerable": true}, {"criteria": "cpe:2.3:a:rubyonrails:rails:1.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "BC33BF68-D887-4C67-8E8C-D2A6CD877FB2", "vulnerable": true}, {"criteria": "cpe:2.3:a:rubyonrails:rails:1.1.2:*:*:*:*:*:*:*", "matchCriteriaId": "7BFCB88D-D946-4510-8DDC-67C32A606589", "vulnerable": true}, {"criteria": "cpe:2.3:a:rubyonrails:rails:1.1.3:*:*:*:*:*:*:*", "matchCriteriaId": "E793287E-2BDA-4012-86F5-886B82510431", "vulnerable": true}, {"criteria": "cpe:2.3:a:rubyonrails:rails:1.1.4:*:*:*:*:*:*:*", "matchCriteriaId": "DF706143-996C-4120-B620-3EDC977568DF", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the \"dependency resolution mechanism\" in Ruby on Rails 1.1.0 through 1.1.5 allows remote attackers to execute arbitrary Ruby code via a URL that is not properly handled in the routing code, which leads to a denial of service (application hang) or \"data loss,\" a different vulnerability than CVE-2006-4111."}, {"lang": "es", "value": "Vulnerabilidad no especificada en el \"mecanismo de resoluci\u00f3n de dependencias\" en Ruby on Rails 1.1.0 hasta 1.1.5 permite a un atacante remoto ejecutar c\u00f3digo Ruby de su elecci\u00f3n a trav\u00e9s de una URL que no es manejada correctamente en el c\u00f3digo de enrutamiento, lo cual lleva a una denegaci\u00f3n de servicio (aplicaci\u00f3n colgada) o \"perdida de datos\", una vulenrabilidad diferente que CVE-2006-4111."}], "evaluatorSolution": "This vulnerability is addressed in the following product release:\r\nRuby on Rails, Ruby on Rails, 1.1.6", "id": "CVE-2006-4112", "lastModified": "2024-11-21T00:15:11.430", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2006-08-14T21:04:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/21424"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/21466"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/21749"}, {"source": "cve@mitre.org", "url": "http://securitytracker.com/id?1016673"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://weblog.rubyonrails.org/2006/8/10/rails-1-1-6-backports-and-full-disclosure"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.gentoo.org/security/en/glsa/glsa-200608-20.xml"}, {"source": "cve@mitre.org", "tags": ["Patch", "US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/699540"}, {"source": "cve@mitre.org", "url": "http://www.novell.com/linux/security/advisories/2006_21_sr.html"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/442934/100/0/threaded"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.securityfocus.com/bid/19454"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28364"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/21424"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/21466"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/21749"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securitytracker.com/id?1016673"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://weblog.rubyonrails.org/2006/8/10/rails-1-1-6-backports-and-full-disclosure"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.gentoo.org/security/en/glsa/glsa-200608-20.xml"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/699540"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.novell.com/linux/security/advisories/2006_21_sr.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/442934/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://www.securityfocus.com/bid/19454"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28364"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}