Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.2
CVSSv2

CVE-2010-2489

Published: 12/07/2010 Updated: 17/08/2017
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
VMScore: 641
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Ruby-lang

Vulnerability Summary

Buffer overflow in Ruby 1.9.x prior to 1.9.1-p429 on Windows might allow local users to gain privileges via a crafted ARGF.inplace_mode value that is not properly handled when constructing the filenames of the backup files.

Vulnerable Product Search on Vulmon Subscribe to Product

ruby-lang ruby 1.9.0-0

ruby-lang ruby 1.9.1

ruby-lang ruby 1.9.0-1

ruby-lang ruby 1.9.0-2

ruby-lang ruby 1.9.0-20060415

ruby-lang ruby 1.9.0-20070709

References

CWE-119http://www.openwall.com/lists/oss-security/2010/07/02/1http://www.securityfocus.com/bid/41321http://svn.ruby-lang.org/repos/ruby/tags/v1_9_1_429/ChangeLoghttp://www.osvdb.org/66040http://svn.ruby-lang.org/repos/ruby/tags/v1_9_2_rc1/ChangeLoghttp://www.openwall.com/lists/oss-security/2010/07/02/10http://secunia.com/advisories/40442http://www.ruby-lang.org/en/news/2010/07/02/ruby-1-9-1-p429-is-released/http://osdir.com/ml/ruby-talk/2010-07/msg00095.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/60135https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-35000CVE-2024-4439unauthorizedCVE-2024-0042CVE-2024-31848CVE-2023-40694cache poisoningCVE-2024-23707firmware
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook