Ruby on Rails Action Pack Comp CVE-2014-7829 Incomplete Fix Information Disclosure Vulnerability

Action Pack component in Ruby on Rails is prone to an information-disclosure vulnerability.

Successful exploits may allow attackers to obtain potentially sensitive information that may aid in other attacks.

Note: This issue is the result of an incomplete fix for the issue described in 70789 (Ruby on Rails Action Pack Component CVE-2014-7818 Information Disclosure Vulnerability).


 

Privacy Statement
Copyright 2010, SecurityFocus