Click here to get twenty dollars off Webhosting at DreamHost
Powered by MaxBlogPress 

 Powered by Max Banner Ads 
« TLD Madness On The Horizon
DOJ Overseeing Development of “Windows 7″ »


Multiple Security Holes Found In Ruby 1.8 and 1.9


July 9th, 2008 19:49 pm | by Ed |

If you're new here, you may want to subscribe to my RSS feed. Thanks for visiting!


 Powered by Max Banner Ads 

Of interest to Ruby Programmers I just read about some serious vulnerabilities were discovered in Ruby by Drew Yao, a member of Apple’s security team.

According to the article about it that I read, these vulnerabilities could be exploited to allow the execution of arbitrary code or lead to a denial of service situation. It also makes it pretty clear that these holes are “exploitable from trivial user-specified parameters”, which means that it’s entirely possible for a knowledgeable user to compromise a ruby application.

Fortunately, there are patches available to fix these vulnerabilities in both versions 1.8 and 1.9

Technorati Tags: arbitrary code execution, vulnerability, denial of service, user specified parameters, exploit, security, ruby

Share and Enjoy:
  • Digg
  • del.icio.us
  • Fark
  • Reddit
  • Technorati
  • StumbleUpon

If you enjoyed this post, make sure you subscribe to my RSS feed!

No Comments

Sorry, the comment form is closed at this time.


Comments protected by Lucia's Linky Love.

 Powered by Max Banner Ads