Multiple format string vulnerabilities in log_subscriber.rb files in the log subscriber component in Action Mailer in Ruby on Rails 3.x prior to 3.2.15 allow remote malicious users to cause a denial of service via a crafted e-mail address that is improperly handled during construction of a log message.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
rubyonrails rails |
||
opensuse opensuse 12.3 |
||
opensuse opensuse 12.2 |
||
opensuse opensuse 13.1 |
||
debian debian linux 7.0 |