Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2006:079: ruby Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the ruby package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2006:079 (ruby).
A vulnerability in how ruby's HTTP module uses blocking sockets was reported by
Yukihiro Matsumoto. By sending large amounts of data to a server application
using this module, a remote attacker could exploit it to render the application
unusable and not respond to other client requests. The updated packages have
been patched to fix this problem.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:079
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.