Ruby on Rails 'http_authentication.rb' Nil Credentials Authentication Bypass Vulnerability

Bugtraq ID: 35579
Class: Failure to Handle Exceptional Conditions
CVE: CVE-2009-2422
Remote: Yes
Local: No
Published: Jul 06 2009 12:00AM
Updated: Mar 29 2010 08:22PM
Credit: Nate
Vulnerable: Ruby on Rails Ruby on Rails 2.3.2
Gentoo Linux
Apple Mac OS X Server 10.6.2
Apple Mac OS X Server 10.6.1
Apple Mac OS X Server 10.5.8
Apple Mac OS X Server 10.6
Apple Mac OS X 10.6.2
Apple Mac OS X 10.6.1
Apple Mac OS X 10.5.8
Apple Mac OS X 10.6
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus