CVE-2011-3186 - Vulnerability Details - OpenCVE

CRLF injection vulnerability in actionpack/lib/action_controller/response.rb in Ruby on Rails 2.3.x before 2.3.13 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the Content-Type header.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Rubyonrails	Rails

Configuration 1 [-]

OR	cpe:2.3:a:rubyonrails:rails:2.3.2:::::::*
	cpe:2.3:a:rubyonrails:rails:2.3.3:::::::*
	cpe:2.3:a:rubyonrails:rails:2.3.4:::::::*
	cpe:2.3:a:rubyonrails:rails:2.3.9:::::::*
	cpe:2.3:a:rubyonrails:rails:2.3.10:::::::*
	cpe:2.3:a:rubyonrails:rails:2.3.11:::::::*
	cpe:2.3:a:rubyonrails:rails:2.3.12:::::::*

No data.

References

Link	Providers
http://groups.google.com/group/rubyonrails-security/msg/bbe342e43abaa78c?dmode=source&output=gplain
http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065137.html
http://secunia.com/advisories/45921
http://www.debian.org/security/2011/dsa-2301
http://www.openwall.com/lists/oss-security/2011/08/17/1
http://www.openwall.com/lists/oss-security/2011/08/19/11
http://www.openwall.com/lists/oss-security/2011/08/20/1
http://www.openwall.com/lists/oss-security/2011/08/22/13
http://www.openwall.com/lists/oss-security/2011/08/22/14
http://www.openwall.com/lists/oss-security/2011/08/22/5
https://bugzilla.redhat.com/show_bug.cgi?id=732156
https://github.com/rails/rails/commit/11dafeaa7533be26441a63618be93a03869c83a9

History

No history.

MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2011-08-29T18:00:00

Updated: 2024-08-06T23:22:27.747Z

Reserved: 2011-08-19T00:00:00

Link: CVE-2011-3186

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2011-08-29T18:55:01.643

Modified: 2025-04-11T00:51:21.963

Link: CVE-2011-3186

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2011-08-16T00:00:00", "descriptions": [{"lang": "en", "value": "CRLF injection vulnerability in actionpack/lib/action_controller/response.rb in Ruby on Rails 2.3.x before 2.3.13 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the Content-Type header."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2011-09-23T09:00:00", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"name": "[oss-security] 20110817 CVE request: ruby on rails flaws (4)", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2011/08/17/1"}, {"name": "[oss-security] 20110822 Re: CVE request: ruby on rails flaws (4)", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2011/08/22/13"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732156"}, {"name": "FEDORA-2011-11567", "tags": ["vendor-advisory", "x_refsource_FEDORA"], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065137.html"}, {"name": "[oss-security] 20110819 Re: CVE request: ruby on rails flaws (4)", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2011/08/19/11"}, {"name": "DSA-2301", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2011/dsa-2301"}, {"name": "45921", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/45921"}, {"name": "[oss-security] 20110820 Re: CVE request: ruby on rails flaws (4)", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2011/08/20/1"}, {"name": "[oss-security] 20110822 Re: CVE request: ruby on rails flaws (4)", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2011/08/22/14"}, {"name": "[oss-security] 20110822 Re: CVE request: ruby on rails flaws (4)", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2011/08/22/5"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/rails/rails/commit/11dafeaa7533be26441a63618be93a03869c83a9"}, {"name": "[rubyonrails-security] 20110816 Response Splitting Vulnerability in Ruby on Rails", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://groups.google.com/group/rubyonrails-security/msg/bbe342e43abaa78c?dmode=source&output=gplain"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "secalert@redhat.com", "ID": "CVE-2011-3186", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "CRLF injection vulnerability in actionpack/lib/action_controller/response.rb in Ruby on Rails 2.3.x before 2.3.13 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the Content-Type header."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "[oss-security] 20110817 CVE request: ruby on rails flaws (4)", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2011/08/17/1"}, {"name": "[oss-security] 20110822 Re: CVE request: ruby on rails flaws (4)", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2011/08/22/13"}, {"name": "https://bugzilla.redhat.com/show_bug.cgi?id=732156", "refsource": "CONFIRM", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732156"}, {"name": "FEDORA-2011-11567", "refsource": "FEDORA", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065137.html"}, {"name": "[oss-security] 20110819 Re: CVE request: ruby on rails flaws (4)", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2011/08/19/11"}, {"name": "DSA-2301", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2011/dsa-2301"}, {"name": "45921", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/45921"}, {"name": "[oss-security] 20110820 Re: CVE request: ruby on rails flaws (4)", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2011/08/20/1"}, {"name": "[oss-security] 20110822 Re: CVE request: ruby on rails flaws (4)", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2011/08/22/14"}, {"name": "[oss-security] 20110822 Re: CVE request: ruby on rails flaws (4)", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2011/08/22/5"}, {"name": "https://github.com/rails/rails/commit/11dafeaa7533be26441a63618be93a03869c83a9", "refsource": "CONFIRM", "url": "https://github.com/rails/rails/commit/11dafeaa7533be26441a63618be93a03869c83a9"}, {"name": "[rubyonrails-security] 20110816 Response Splitting Vulnerability in Ruby on Rails", "refsource": "MLIST", "url": "http://groups.google.com/group/rubyonrails-security/msg/bbe342e43abaa78c?dmode=source&output=gplain"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T23:22:27.747Z"}, "title": "CVE Program Container", "references": [{"name": "[oss-security] 20110817 CVE request: ruby on rails flaws (4)", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2011/08/17/1"}, {"name": "[oss-security] 20110822 Re: CVE request: ruby on rails flaws (4)", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2011/08/22/13"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732156"}, {"name": "FEDORA-2011-11567", "tags": ["vendor-advisory", "x_refsource_FEDORA", "x_transferred"], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065137.html"}, {"name": "[oss-security] 20110819 Re: CVE request: ruby on rails flaws (4)", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2011/08/19/11"}, {"name": "DSA-2301", "tags": ["vendor-advisory", "x_refsource_DEBIAN", "x_transferred"], "url": "http://www.debian.org/security/2011/dsa-2301"}, {"name": "45921", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/45921"}, {"name": "[oss-security] 20110820 Re: CVE request: ruby on rails flaws (4)", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2011/08/20/1"}, {"name": "[oss-security] 20110822 Re: CVE request: ruby on rails flaws (4)", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2011/08/22/14"}, {"name": "[oss-security] 20110822 Re: CVE request: ruby on rails flaws (4)", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2011/08/22/5"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/rails/rails/commit/11dafeaa7533be26441a63618be93a03869c83a9"}, {"name": "[rubyonrails-security] 20110816 Response Splitting Vulnerability in Ruby on Rails", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://groups.google.com/group/rubyonrails-security/msg/bbe342e43abaa78c?dmode=source&output=gplain"}]}]}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2011-3186", "datePublished": "2011-08-29T18:00:00", "dateReserved": "2011-08-19T00:00:00", "dateUpdated": "2024-08-06T23:22:27.747Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:rubyonrails:rails:2.3.2:*:*:*:*:*:*:*", "matchCriteriaId": "D1467583-23E9-4E2B-982D-80A356174BB6", "vulnerable": true}, {"criteria": "cpe:2.3:a:rubyonrails:rails:2.3.3:*:*:*:*:*:*:*", "matchCriteriaId": "4DC784C0-5618-4C32-8C17-BE7041656E14", "vulnerable": true}, {"criteria": "cpe:2.3:a:rubyonrails:rails:2.3.4:*:*:*:*:*:*:*", "matchCriteriaId": "CFB9ABB5-1F78-4CF0-BA82-7833E0F7A56E", "vulnerable": true}, {"criteria": "cpe:2.3:a:rubyonrails:rails:2.3.9:*:*:*:*:*:*:*", "matchCriteriaId": "AF3ED96F-3EA4-4E47-A559-9DF9A7D3DDE2", "vulnerable": true}, {"criteria": "cpe:2.3:a:rubyonrails:rails:2.3.10:*:*:*:*:*:*:*", "matchCriteriaId": "3B38EAA4-E948-45A7-B6E5-7214F2B545E3", "vulnerable": true}, {"criteria": "cpe:2.3:a:rubyonrails:rails:2.3.11:*:*:*:*:*:*:*", "matchCriteriaId": "6ECC8C49-5A46-4D23-81F9-8243F5D508DB", "vulnerable": true}, {"criteria": "cpe:2.3:a:rubyonrails:rails:2.3.12:*:*:*:*:*:*:*", "matchCriteriaId": "312848C5-BA35-4A48-B66D-195A5E1CD00F", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "CRLF injection vulnerability in actionpack/lib/action_controller/response.rb in Ruby on Rails 2.3.x before 2.3.13 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the Content-Type header."}, {"lang": "es", "value": "Vulnerabilidad de falsificaci\u00f3n de petici\u00f3n en sitios cruzados (CRLF) actionpack/lib/action_controller/response.rb en Ruby on Rails v2.3.x antes dev 2.3.13 permite a atacantes remotos inyectar cabeceras HTTP de su elecci\u00f3n y llevar a cabo ataques HTTP de divisi\u00f3n de respuesta a trav\u00e9s de la cabecera Content-Type."}], "id": "CVE-2011-3186", "lastModified": "2025-04-11T00:51:21.963", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2011-08-29T18:55:01.643", "references": [{"source": "secalert@redhat.com", "tags": ["Patch"], "url": "http://groups.google.com/group/rubyonrails-security/msg/bbe342e43abaa78c?dmode=source&output=gplain"}, {"source": "secalert@redhat.com", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065137.html"}, {"source": "secalert@redhat.com", "url": "http://secunia.com/advisories/45921"}, {"source": "secalert@redhat.com", "url": "http://www.debian.org/security/2011/dsa-2301"}, {"source": "secalert@redhat.com", "tags": ["Patch"], "url": "http://www.openwall.com/lists/oss-security/2011/08/17/1"}, {"source": "secalert@redhat.com", "tags": ["Patch"], "url": "http://www.openwall.com/lists/oss-security/2011/08/19/11"}, {"source": "secalert@redhat.com", "tags": ["Patch"], "url": "http://www.openwall.com/lists/oss-security/2011/08/20/1"}, {"source": "secalert@redhat.com", "tags": ["Patch"], "url": "http://www.openwall.com/lists/oss-security/2011/08/22/13"}, {"source": "secalert@redhat.com", "url": "http://www.openwall.com/lists/oss-security/2011/08/22/14"}, {"source": "secalert@redhat.com", "tags": ["Patch"], "url": "http://www.openwall.com/lists/oss-security/2011/08/22/5"}, {"source": "secalert@redhat.com", "tags": ["Patch"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732156"}, {"source": "secalert@redhat.com", "tags": ["Patch"], "url": "https://github.com/rails/rails/commit/11dafeaa7533be26441a63618be93a03869c83a9"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://groups.google.com/group/rubyonrails-security/msg/bbe342e43abaa78c?dmode=source&output=gplain"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065137.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/45921"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.debian.org/security/2011/dsa-2301"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://www.openwall.com/lists/oss-security/2011/08/17/1"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://www.openwall.com/lists/oss-security/2011/08/19/11"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://www.openwall.com/lists/oss-security/2011/08/20/1"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://www.openwall.com/lists/oss-security/2011/08/22/13"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.openwall.com/lists/oss-security/2011/08/22/14"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://www.openwall.com/lists/oss-security/2011/08/22/5"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732156"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "https://github.com/rails/rails/commit/11dafeaa7533be26441a63618be93a03869c83a9"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-94"}], "source": "nvd@nist.gov", "type": "Primary"}]}