Search CVE reports
61 – 62 of 62 results
CVE-2004-0983
Unknown priorityThe CGI module in Ruby 1.6 before 1.6.8, and 1.8 before 1.8.2, allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a certain HTTP request.
2 affected packages
ruby1.6, ruby1.8
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| ruby1.6 | — | — | — | — | — |
| ruby1.8 | — | — | — | — | — |
CVE-2004-0755
Unknown priorityThe FileStore capability in CGI::Session for Ruby before 1.8.1, and possibly PStore, creates files with insecure permissions, which can allow local users to steal session information and hijack sessions.
2 affected packages
ruby1.6, ruby1.8
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| ruby1.6 | — | — | — | — | — |
| ruby1.8 | — | — | — | — | — |