7.5
CVSSv2

CVE-2016-2337

Published: 06/01/2017 Updated: 28/08/2018
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Summary

Type confusion exists in _cancel_eval Ruby's TclTkIp class method. Attacker passing different type of object than String as "retval" argument can cause arbitrary code execution.

Vulnerable Product Search on Vulmon Subscribe to Product

ruby-lang ruby 2.2.2

ruby-lang ruby 2.3.0

Vendor Advisories

Debian Bug report logs - #851161 ruby21: CVE-2016-2337 CVE-2016-2339 Package: ruby21; Maintainer for ruby21 is Antonio Terceiro <terceiro@debianorg>; Source for ruby21 is src:ruby21 (PTS, buildd, popcon) Reported by: Moritz Muehlenhoff <jmm@debianorg> Date: Thu, 12 Jan 2017 15:15:01 UTC Severity: grave Tags: ...
Type confusion exists in _cancel_eval Ruby's TclTkIp class method Attacker passing different type of object than String as "retval" argument can cause arbitrary code execution ...
Several security issues were fixed in Ruby ...
Oracle Solaris Third Party Bulletin - July 2018 Description The Oracle Solaris Third Party Bulletin announces patches for one or more security vulnerabilities fixed in third party software that is included in Oracle Solaris distributions Starting January 20, 2015, Third Party Bulletins are released on the same day when Oracle Critical P ...