Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2006:192: ruby Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the ruby package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2006:192 (ruby).
The CGI library in Ruby 1.8 allowed a remote attacker to cause a Denial
of Service via an HTTP request with a multipart MIME body that
contained an invalid boundary specifier, which would result in an
infinite loop and CPU consumption.
Updated packages have been patched to correct this issue.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:192
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.