Ruby On Rails Authentication Bypass Vulnerability Network Vulnerability

Summary

The host is running Ruby on Rails, which is prone to Authentication Bypass Vulnerability.

Impact

Successful exploitation will allow attacker to bypass authentication by providing an invalid username with an empty password and gain unauthorized access to the system. Impact Level: Application

Solution

Apply the security patches http://github.com/rails/rails/commit/056ddbdcfb07f0b5c7e6ed8a35f6c3b55b4ab489 ***** NOTE: Ignore this warning, if above mentioned patch is manually applied. *****

Insight

This Flaw is caused During login process, the digest authentication functionality (http_authentication.rb) returns a 'nil' instead of 'false' when the provided username is not found and then proceeds to verify this value against the provided password.

Affected

Ruby on Rails version 2.3.2 and prior

References

http://secunia.com/advisories/35702
http://weblog.rubyonrails.org/2009/6/3/security-problem-with-authenticate_with_http_digest
http://www.vupen.com/english/advisories/2009/1802

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-2422

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Apache Struts2 Showcase Skill Name Remote Code Execution Vulnerability
Agora CGI Cross Site Scripting
68designs 68kb Multiple Remote File Include Vulnerabilities
ArticleSetup Multiple Cross-Site Scripting and SQL Injection Vulnerabilities
Advantech WebAccess Multiple Vulnerabilities

Ruby on Rails Authentication Bypass Vulnerability

Take action and discover your vulnerabilities