This host is installed with Ruby and is prone to denial-of-service vulnerability.

Successful exploitation will allow attackers to cause a denial of service (crash) condition. Impact Level: Application

Upgrade to Ruby 2.1.3 or later. For updates refer http://www.ruby-lang.org

Flaw exists due to an error in 'str_buf_cat' function in string.c script triggered when handling an overly long string.

Ruby versions 1.9.3, 2.0.0 and 2.1.0 on Windows.

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

• http://svn.ruby-lang.org/repos/ruby/tags/v2_1_3/ChangeLog
• http://www.osvdb.org/107478
• http://xforce.iss.net/xforce/xfdb/93505
• https://bugs.ruby-lang.org/issues/9709

---

Updated on 2015-03-25