Vulnerabilities

CVE-2006-5467

by Fred · 27/10/2006

The cgi.rb CGI library for Ruby 1.8 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via an HTTP request with a multipart MIME body that contains an invalid boundary specifier, as demonstrated using a specifier that begins with a "-" instead of "–" and contains an inconsistent ID.

Date published : 2006-10-27

http://lists.apple.com/archives/security-announce/2007/May/msg00004.html

http://www.securityfocus.com/bid/20777

Similar

Tags: Cybersecurity Alert