The Artima Developer Community
Articles | News | Weblogs | Books | Forums
Artima Forums | Articles | Weblogs | Java Answers | News
Sponsored Link

Ruby Buzz Forum
Official Full Disclosure of Rails Security Vulnerability

0 replies on 1 page.

Welcome Guest
  Sign In

Go back to the topic listing  Back to Topic List Click to reply to this topic  Reply to this Topic Click to search messages in this forum  Search Forum Click for a threaded view of the topic  Threaded View   
Previous Topic   Next Topic
Flat View: This topic has 0 replies on 1 page
Max Zone

Posts: 9170
Nickname: dzone
Registered: Jun, 2006

dzone.com is a link-sharing community where member participation determines what gets published
Official Full Disclosure of Rails Security Vulnerability Posted: Aug 11, 2006 2:38 PM
Reply to this message Reply

This post originated from an RSS feed registered with Ruby Buzz by Max Zone.
Original Post: Official Full Disclosure of Rails Security Vulnerability
Feed Title: dzone.com: ruby
Feed URL: http://feeds.dzone.com/dzone/ruby
Feed Description: dzone.com: fresh ruby and rails links for developers 		Latest Ruby Buzz Posts
Latest Ruby Buzz Posts by Max Zone
Latest Posts From dzone.com: ruby

Advertisement
Due do the fact that several other Web sites have already let the cat out of the bag (and probably also because of the amount of criticism the Rails core team has been getting because of their security by obscurity approach to handling this), an official full disclosure of the problem has been posted on the Rails weblog. As other sites had reported, it is an arbitrary code execution bug that allows the execution of arbitrary ruby code.

Read: Official Full Disclosure of Rails Security Vulnerability

Topic: Mashup Creepiness Previous Topic   Next Topic Topic: Simple Ruby remote logging
Sponsored Links


Google
  Web Artima.com   

Copyright © 1996-2019 Artima, Inc. All Rights Reserved. - Privacy Policy - Terms of Use