Ruby on Rails XML Processor YAML Deserialization RCE Vulnerability CVE-2013-0156
- Severity
- Not available
- Vulnerability description
- Not available
- Risk description
- Not available
- Recommendation
- Not available
- References
- http://secunia.com/advisories/51753http://www.securityfocus.com/bid/57187http://www.exploit-db.com/exploits/24019http://www.insinuator.net/2013/01/rails-yamlhttp://ronin-ruby.github.com/blog/2013/01/09/rails-pocs.htmlhttp://blog.codeclimate.com/blog/2013/01/10/rails-remote-code-execution-vulnerability-explainedhttps://community.rapid7.com/community/metasploit/blog/2013/01/09/serialization-mischief-in-ruby-land-cve-2013-0156
- Codename
- Not available
- Detectable with
- Network Scanner
- Scan engine
- OpenVAS
- Exploitable with Sniper
- No
- CVE Published
- Not available
- Detection added at
- Software Type
- Not available
- Vendor
- Not available
- Product
- Not available
Detect this vulnerability now!
Check your clients' targets (or your own) for this vulnerability and thousands more! Get proof for validation with our ethical hacking toolkit.