RubyGems passenger CVE-2012-6135 Security Bypass Vulnerability
BID:58259
CVE-2012-6135 |Info
RubyGems passenger CVE-2012-6135 Security Bypass Vulnerability
| Bugtraq ID: | 58259 |
| Class: | Design Error |
| CVE: |
CVE-2012-6135 |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 01 2013 12:00AM |
| Updated: | Mar 01 2013 12:00AM |
| Credit: | Red Hat Security Response Team |
| Vulnerable: |
Phusion passenger 0 |
| Not Vulnerable: | |
Discussion
RubyGems passenger CVE-2012-6135 Security Bypass Vulnerability
passenger is prone to a security-bypass vulnerability.
An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions; other attacks are also possible.
passenger is prone to a security-bypass vulnerability.
An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions; other attacks are also possible.
Exploit / POC
RubyGems passenger CVE-2012-6135 Security Bypass Vulnerability
Attackers can exploit this issue using readily available tools.
Attackers can exploit this issue using readily available tools.