Description
Buffer overflow in Ruby 1.9.x before 1.9.1-p429 on Windows might allow local users to gain privileges via a crafted ARGF.inplace_mode value that is not properly handled when constructing the filenames of the backup files.
Remediation
References
Related Vulnerabilities
Oracle Application Server Other Vulnerability (CVE-2007-2121)
Oracle HTTP Server Out-of-bounds Read Vulnerability (CVE-2021-35940)
MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-3455)
phpMyFAQ Improper Restriction of Excessive Authentication Attempts Vulnerability (CVE-2017-11187)