Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 HTTP:RUBYONRAILS-JSONYAML-RCE

Severity

 High

Recommended

 No

Recommended Action

 Drop

Category

 HTTP

Keywords

 Ruby on Rails JSON YAML Parsing Remote Code Execution

Release Date

 2013/02/12

Update Number

 2232

Supported Platforms

 di-5.3+, idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: Ruby on Rails JSON YAML Parsing Remote Code Execution


This signature detects attempts to exploit a known vulnerability against applications developed using Ruby on Rails. A successful attack can lead to arbitrary code execution.

Extended Description

lib/active_support/json/backends/yaml.rb in Ruby on Rails 2.3.x before 2.3.16 and 3.0.x before 3.0.20 does not properly convert JSON data to YAML data for processing by a YAML parser, which allows remote attackers to execute arbitrary code, conduct SQL injection attacks, or bypass authentication via crafted data that triggers unsafe decoding, a different vulnerability than CVE-2013-0156.

Affected Products

  • rubyonrails ruby_on_rails 2.3.0
  • rubyonrails ruby_on_rails 2.3.1
  • rubyonrails ruby_on_rails 2.3.10
  • rubyonrails ruby_on_rails 2.3.11
  • rubyonrails ruby_on_rails 2.3.12
  • rubyonrails ruby_on_rails 2.3.13
  • rubyonrails ruby_on_rails 2.3.14
  • rubyonrails ruby_on_rails 2.3.15
  • rubyonrails ruby_on_rails 2.3.2
  • rubyonrails ruby_on_rails 2.3.3
  • rubyonrails ruby_on_rails 2.3.4
  • rubyonrails ruby_on_rails 2.3.9
  • rubyonrails ruby_on_rails 3.0.0 (beta)
  • rubyonrails ruby_on_rails 3.0.0 (beta2)
  • rubyonrails ruby_on_rails 3.0.0 (beta3)
  • rubyonrails ruby_on_rails 3.0.0 (beta4)
  • rubyonrails ruby_on_rails 3.0.0 (rc)
  • rubyonrails ruby_on_rails 3.0.0 (rc2)
  • rubyonrails ruby_on_rails 3.0.10 (rc1)
  • rubyonrails ruby_on_rails 3.0.11
  • rubyonrails ruby_on_rails 3.0.12 (rc1)
  • rubyonrails ruby_on_rails 3.0.13 (rc1)
  • rubyonrails ruby_on_rails 3.0.14
  • rubyonrails ruby_on_rails 3.0.16
  • rubyonrails ruby_on_rails 3.0.17
  • rubyonrails ruby_on_rails 3.0.18
  • rubyonrails ruby_on_rails 3.0.19
  • rubyonrails ruby_on_rails 3.0.1 (pre)
  • rubyonrails ruby_on_rails 3.0.2 (pre)
  • rubyonrails ruby_on_rails 3.0.3
  • rubyonrails ruby_on_rails 3.0.4 (rc)
  • rubyonrails ruby_on_rails 3.0.4 (rc1)
  • rubyonrails ruby_on_rails 3.0.5 (rc1)
  • rubyonrails ruby_on_rails 3.0.6 (rc1)
  • rubyonrails ruby_on_rails 3.0.6 (rc2)
  • rubyonrails ruby_on_rails 3.0.7 (rc1)
  • rubyonrails ruby_on_rails 3.0.7 (rc2)
  • rubyonrails ruby_on_rails 3.0.8 (rc1)
  • rubyonrails ruby_on_rails 3.0.8 (rc2)
  • rubyonrails ruby_on_rails 3.0.8 (rc3)
  • rubyonrails ruby_on_rails 3.0.8 (rc4)
  • rubyonrails ruby_on_rails 3.0.9 (rc1)
  • rubyonrails ruby_on_rails 3.0.9 (rc2)
  • rubyonrails ruby_on_rails 3.0.9 (rc3)
  • rubyonrails ruby_on_rails 3.0.9 (rc4)
  • rubyonrails ruby_on_rails 3.0.9 (rc5)

References

  • BugTraq: 57575
  • CVE: CVE-2013-0333

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out