security@ruby-lang.org

Created security@ruby-lang.org . If you have found vulnerabilities in Ruby, please report to this address. security@ruby-lang.org is a private ML, and anyone can post to it without subscription.

작성자 Shugo Maeda (2005 07 02)

XMLRPC.iPIMethods Vulnerability

On Fri Jun 17 2005, a vulnerability of XMLRPC.iPIMethods was reported in [ruby-core:05237]. Remote attackers can execute arbitrary commands by this vulnerability.

Affected Programs

Programs providing XML-RPC services by XMLRPC.iPIMethods are affected.

Fix

This vulnerability was already fixed in both the CVS HEAD and the ruby_1_8 branch.

Please apply this patch for ruby-1.8.2.

작성자 Shugo Maeda (2005 07 01)

<< 2005년 아카이브로 돌아가기

다운로드 | 문서 | 라이브러리 | 커뮤니티 | 뉴스 | 보안이슈 | 루비에 대해서