Vulnerability Description
Ruby on Rails 3.0.x before 3.0.4 does not ensure that arguments to the limit function specify integer values, which makes it easier for remote attackers to conduct SQL injection attacks via a non-numeric argument.
CVSS Score
7.5
HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Rubyonrails | Rails | 3.0.0 |
Related Weaknesses (CWE)
References
- http://groups.google.com/group/rubyonrails-security/msg/4e19864cf6ad40ad?dmode=sPatch
- http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057650.html
- http://secunia.com/advisories/43278Vendor Advisory
- http://securitytracker.com/id?1025063
- http://weblog.rubyonrails.org/2011/2/8/new-releases-2-3-11-and-3-0-4Patch
- http://www.vupen.com/english/advisories/2011/0877
- https://github.com/rails/rails/commit/354da43ab0a10b3b7b3f9cb0619aa562c3be8474
- http://groups.google.com/group/rubyonrails-security/msg/4e19864cf6ad40ad?dmode=sPatch
- http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057650.html
- http://secunia.com/advisories/43278Vendor Advisory
- http://securitytracker.com/id?1025063
- http://weblog.rubyonrails.org/2011/2/8/new-releases-2-3-11-and-3-0-4Patch
- http://www.vupen.com/english/advisories/2011/0877
- https://github.com/rails/rails/commit/354da43ab0a10b3b7b3f9cb0619aa562c3be8474
FAQ
What is CVE-2011-0448?
CVE-2011-0448 is a vulnerability with a CVSS score of 7.5 (HIGH). Ruby on Rails 3.0.x before 3.0.4 does not ensure that arguments to the limit function specify integer values, which makes it easier for remote attackers to conduct SQL injection attacks via a non-nume...
How severe is CVE-2011-0448?
CVE-2011-0448 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2011-0448?
Check the references section above for vendor advisories and patch information. Affected products include: Rubyonrails Rails.