CVE-2013-0155

Vulnerability Description

Ruby on Rails 3.0.x before 3.0.19, 3.1.x before 3.1.10, and 3.2.x before 3.2.11 does not properly consider differences in parameter handling between the Active Record component and the JSON implementation, which allows remote attackers to bypass intended database-query restrictions and perform NULL checks or trigger missing WHERE clauses via a crafted request, as demonstrated by certain "[nil]" values, a related issue to CVE-2012-2660 and CVE-2012-2694.

CVSS Score

Affected Products

Related Weaknesses (CWE)

References

• http://ics-cert.us-cert.gov/advisories/ICSA-13-036-01AThird Party AdvisoryUS Government Resource
• http://lists.apple.com/archives/security-announce/2013/Jun/msg00000.htmlMailing ListThird Party Advisory
• http://lists.opensuse.org/opensuse-updates/2013-12/msg00079.htmlMailing ListThird Party Advisory
• http://lists.opensuse.org/opensuse-updates/2013-12/msg00081.htmlMailing ListThird Party Advisory
• http://lists.opensuse.org/opensuse-updates/2013-12/msg00082.htmlMailing ListThird Party Advisory
• http://lists.opensuse.org/opensuse-updates/2014-01/msg00003.htmlMailing ListThird Party Advisory
• http://rhn.redhat.com/errata/RHSA-2013-0154.htmlThird Party Advisory
• http://rhn.redhat.com/errata/RHSA-2013-0155.htmlThird Party Advisory
• http://support.apple.com/kb/HT5784Third Party Advisory
• http://www.debian.org/security/2013/dsa-2609Third Party Advisory
• https://groups.google.com/group/rubyonrails-security/msg/bc6f13dafe130ee9?dmode=Third Party Advisory
• https://puppet.com/security/cve/cve-2013-0155Third Party Advisory
• http://ics-cert.us-cert.gov/advisories/ICSA-13-036-01AThird Party AdvisoryUS Government Resource
• http://lists.apple.com/archives/security-announce/2013/Jun/msg00000.htmlMailing ListThird Party Advisory
• http://lists.opensuse.org/opensuse-updates/2013-12/msg00079.htmlMailing ListThird Party Advisory