BID:53174

RubyGems SSL Certificate Validation Security Bypass Vulnerability

Info

RubyGems SSL Certificate Validation Security Bypass Vulnerability

Bugtraq ID:	53174
Class:	Design Error
CVE:	CVE-2012-2126
Remote:	Yes
Local:	No
Published:	Apr 20 2012 12:00AM
Updated:	Apr 13 2015 09:22PM
Credit:	John Firebaugh
Vulnerable:	Ubuntu Ubuntu Linux 12.04 LTS i386 Ubuntu Ubuntu Linux 12.04 LTS amd64 RubyGems RubyGems 0.9.1 RubyGems RubyGems 0.9 RubyGems RubyGems 0.8.11 RubyGems RubyGems 1.9.3 Redhat Enterprise Linux Workstation Optional 6 Redhat Enterprise Linux Server Optional 6 Redhat Enterprise Linux HPC Node Optional 6 Redhat Enterprise Linux Desktop Optional 6 Oracle Enterprise Linux 6.2 Oracle Enterprise Linux 6 CentOS CentOS 6

Not Vulnerable:	RubyGems RubyGems 1.9.3-p194

Discussion

RubyGems SSL Certificate Validation Security Bypass Vulnerability

RubyGems is prone to a security-bypass vulnerability because the application fails to properly validate SSL certificates.

Successfully exploiting this issue allows attackers to perform man-in-the-middle attacks or impersonate trusted servers, which will aid in further attacks.

RubyGems versions prior to 1.9.3-p194 are vulnerable.

Exploit / POC

RubyGems SSL Certificate Validation Security Bypass Vulnerability

An attacker can use readily available network utilities to exploit this issue.

Solution / Fix

RubyGems SSL Certificate Validation Security Bypass Vulnerability

Solution:
Updates are available. Please see the references for more information.

References

RubyGems SSL Certificate Validation Security Bypass Vulnerability

References:

Security Fix for RubyGems: SSL server verification failure for remote repository (Ruby)
Vendor Homepage (RubyGems)