Yukihiro Matsumoto: >> Ruby >> 1.8.5 Security Vulnerabilities
The read_multipart function in cgi.rb in Ruby before 1.8.5-p2 does not properly detect boundaries in MIME multipart content, which allows remote attackers to cause a denial of service (infinite loop) via crafted HTTP requests, a different issue than CVE-2006-5467.
CVSS Score
5.0
EPSS Score
0.037
Published
2006-12-06