CVE-2006-3694 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2006-3694
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-3694

Description: Multiple unspecified vulnerabilities in Ruby before 1.8.5 allow remote attackers to bypass "safe level" checks via unspecified vectors involving (1) the alias function and (2) "directory operations".

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/27725 UBUNTU http://www.ubuntu.com/usn/usn-325-1 SUSE http://www.novell.com/linux/security/advisories/2006_21_sr.html SGI SAID Secunia Advisory: SA21233 Secunia Advisory: SA21009 Secunia Advisory: SA21236 Secunia Advisory: SA21272 Secunia Advisory: SA21337 Secunia Advisory: SA21657 Secunia Advisory: SA21598 Secunia Advisory: SA21749 REDHAT http://www.redhat.com/support/errata/RHSA-2006-0604.html OSVDB 27145 27144 MLIST http://lists.freebsd.org/pipermail/freebsd-security/2006-July/003915.html http://lists.freebsd.org/pipermail/freebsd-security/2006-July/003907.html MISC http://jvn.jp/jp/JVN%2313947696/index.html http://jvn.jp/jp/JVN%2383768862/index.html MANDRIVA http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:134 DEBIAN http://www.debian.org/security/2006/dsa-1157 http://www.debian.org/security/2006/dsa-1139 BID 18944

Return to the previous page.