Description

Buffer overflow in Ruby 1.9.x before 1.9.1-p429 on Windows might allow local users to gain privileges via a crafted ARGF.inplace_mode value that is not properly handled when constructing the filenames of the backup files.

Remediation

References

CVE-2010-2489

Related Vulnerabilities

WordPress Plugin WordPress Page Contact SQL Injection (1.0)

Oracle HTTP Server Other Vulnerability (CVE-2006-5346)

Zope Web Application Server Other Vulnerability (CVE-2006-4684)

WordPress Plugin Google Maps v3 Shortcode Cross-Site Scripting (1.2.1)

Drupal Core 8.5.x Multiple Vulnerabilities (8.5.0 - 8.5.8)

Severity

High

Classification

CVE-2010-2489 CWE-119

Tags

Missing Update Known Vulnerabilities