CVE-2006-1931 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2006-1931
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-1931

Description: The HTTP/XMLRPC server in Ruby before 1.8.2 uses blocking sockets, which allows attackers to cause a denial of service (blocked connections) via a large amount of data.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/26102 UBUNTU http://www.ubuntulinux.org/support/documentation/usn/usn-273-1 SUSE http://www.novell.com/linux/security/advisories/2006-06-02.html ST 1015978 SAID Secunia Advisory: SA20024 Secunia Advisory: SA16904 Secunia Advisory: SA19804 Secunia Advisory: SA19772 Secunia Advisory: SA20064 Secunia Advisory: SA20457 Secunia Advisory: SA21657 REDHAT http://www.redhat.com/support/errata/RHSA-2006-0427.html OSVDB 24972 MISC http://blade.nagaokaut.ac.jp/cgi-bin/scat.rb/ruby/ruby-dev/27787 MANDRIVA http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:079 GENTOO http://www.gentoo.org/security/en/glsa/glsa-200605-11.xml DEBIAN http://www.debian.org/security/2006/dsa-1157 CONFIRM BID 17645

Return to the previous page.