RubyGems Wicked Arbitrary File Access Vulnerability

Wicked is prone to an arbitrary file-access vulnerability.

An attacker can exploit this issue to read arbitrary files in the context of the web server process, which may aid in further attacks.

Versions prior to Wicked 1.0.1 are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus