Overview
Ruby WEBrick is vulnerable to a directory traversal on systems that support backslash (\) path separators. This vulnerability may allow an attacker to access arbitrary files outside of the web server root directory.
Description
WEBrick is a Ruby library program to build HTTP servers. WEBrick contains a directory traversal vulnerability in systems that accept backslash (\) as a path separator. A remote attacker may be able to exploit this vulnerability by using encoded backslash sequences (..%5c). For more information please see "File access vulnerability of WEBrick." |
Impact
A remote attacker could gain access to arbitrary files outside of the web server root directory. |
Solution
Apply an Update Ruby has released version 1.8.5-p115 and 1.8.6-p114 for the 1.8 series. For the 1.9 series, apply the patch referenced in "File access vulnerability of WEBrick." |
Vendor Information
CVSS Metrics
| Group | Score | Vector |
|---|---|---|
| Base | ||
| Temporal | ||
| Environmental |
References
Acknowledgements
Thanks to Alexandr Polyakov for reporting this vulnerability.
This document was written by John Hollenberger.
Other Information
| CVE IDs: | CVE-2008-1145 |
| Severity Metric: | 12.83 |
| Date Public: | 2008-03-06 |
| Date First Published: | 2008-04-14 |
| Date Last Updated: | 2008-04-14 19:20 UTC |
| Document Revision: | 11 |