6.4
CVE-2006-3694
- EPSS 5.74%
- Veröffentlicht 21.07.2006 14:03:00
- Zuletzt bearbeitet 16.06.2026 22:27:34
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Multiple unspecified vulnerabilities in Ruby before 1.8.5 allow remote attackers to bypass "safe level" checks via unspecified vectors involving (1) the alias function and (2) "directory operations".
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Yukihiro Matsumoto ≫ Ruby Version1.8.2
Yukihiro Matsumoto ≫ Ruby Version1.8.3
Yukihiro Matsumoto ≫ Ruby Version1.8.4
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 5.74% | 0.921 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.4 | 10 | 4.9 |
AV:N/AC:L/Au:N/C:P/I:P/A:N
|
http://secunia.com/advisories/21657
http://www.debian.org/security/2006/dsa-1157
http://secunia.com/advisories/21749
http://www.novell.com/linux/security/advisories/2006_21_sr.html
ftp://patches.sgi.com/support/free/security/advisories/20060801-01-P
http://secunia.com/advisories/21598
http://jvn.jp/jp/JVN%2313947696/index.html
http://jvn.jp/jp/JVN%2383768862/index.html
http://lists.freebsd.org/pipermail/freebsd-security/2006-July/003907.html
http://lists.freebsd.org/pipermail/freebsd-security/2006-July/003915.html
http://secunia.com/advisories/21009
http://secunia.com/advisories/21233
http://secunia.com/advisories/21236
http://secunia.com/advisories/21272
http://secunia.com/advisories/21337
http://www.debian.org/security/2006/dsa-1139
http://www.mandriva.com/security/advisories?name=MDKSA-2006:134
http://www.osvdb.org/27144
http://www.osvdb.org/27145
http://www.redhat.com/support/errata/RHSA-2006-0604.html
http://www.securityfocus.com/bid/18944
http://www.ubuntu.com/usn/usn-325-1
http://www.vupen.com/english/advisories/2006/2760
https://exchange.xforce.ibmcloud.com/vulnerabilities/27725
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9983