{"containers":{"cna":{"affected":[{"product":"n/a","vendor":"n/a","versions":[{"status":"affected","version":"n/a"}]}],"datePublic":"2006-10-25T00:00:00.000Z","descriptions":[{"lang":"en","value":"The cgi.rb CGI library for Ruby 1.8 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via an HTTP request with a multipart MIME body that contains an invalid boundary specifier, as demonstrated using a specifier that begins with a \"-\" instead of \"--\" and contains an inconsistent ID."}],"problemTypes":[{"descriptions":[{"description":"n/a","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2017-10-10T00:57:01.000Z","orgId":"53f830b8-0a3f-465b-8143-3b8a9948e749","shortName":"redhat"},"references":[{"name":"GLSA-200611-12","tags":["vendor-advisory","x_refsource_GENTOO"],"url":"http://security.gentoo.org/glsa/glsa-200611-12.xml"},{"tags":["x_refsource_CONFIRM"],"url":"http://docs.info.apple.com/article.html?artnum=305530"},{"name":"22932","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/22932"},{"name":"ADV-2007-1939","tags":["vdb-entry","x_refsource_VUPEN"],"url":"http://www.vupen.com/english/advisories/2007/1939"},{"name":"23344","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/23344"},{"name":"22615","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/22615"},{"name":"OpenPKG-SA-2006.030","tags":["vendor-advisory","x_refsource_OPENPKG"],"url":"http://www.openpkg.org/security/advisories/OpenPKG-SA-2006.030-ruby.html"},{"name":"APPLE-SA-2007-05-24","tags":["vendor-advisory","x_refsource_APPLE"],"url":"http://lists.apple.com/archives/security-announce/2007/May/msg00004.html"},{"name":"oval:org.mitre.oval:def:10185","tags":["vdb-entry","signature","x_refsource_OVAL"],"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10185"},{"name":"22761","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/22761"},{"name":"25402","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/25402"},{"name":"SUSE-SR:2006:026","tags":["vendor-advisory","x_refsource_SUSE"],"url":"http://www.novell.com/linux/security/advisories/2006_26_sr.html"},{"name":"23040","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/23040"},{"name":"[mongrel-users] 20061025 [SEC] Mongrel Temporary Fix For cgi.rb 99% CPU DoS Attack","tags":["mailing-list","x_refsource_MLIST"],"url":"http://rubyforge.org/pipermail/mongrel-users/2006-October/001946.html"},{"name":"20777","tags":["vdb-entry","x_refsource_BID"],"url":"http://www.securityfocus.com/bid/20777"},{"name":"MDKSA-2006:192","tags":["vendor-advisory","x_refsource_MANDRIVA"],"url":"http://www.mandriva.com/security/advisories?name=MDKSA-2006:192"},{"name":"1017194","tags":["vdb-entry","x_refsource_SECTRACK"],"url":"http://securitytracker.com/id?1017194"},{"name":"20061101-01-P","tags":["vendor-advisory","x_refsource_SGI"],"url":"ftp://patches.sgi.com/support/free/security/advisories/20061101-01-P"},{"name":"DSA-1235","tags":["vendor-advisory","x_refsource_DEBIAN"],"url":"http://www.debian.org/security/2006/dsa-1235"},{"name":"USN-371-1","tags":["vendor-advisory","x_refsource_UBUNTU"],"url":"http://www.ubuntu.com/usn/usn-371-1"},{"name":"ADV-2006-4244","tags":["vdb-entry","x_refsource_VUPEN"],"url":"http://www.vupen.com/english/advisories/2006/4244"},{"name":"RHSA-2006:0729","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"http://www.redhat.com/support/errata/RHSA-2006-0729.html"},{"name":"DSA-1234","tags":["vendor-advisory","x_refsource_DEBIAN"],"url":"http://www.debian.org/security/2006/dsa-1234"},{"name":"22929","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/22929"},{"name":"ADV-2006-4245","tags":["vdb-entry","x_refsource_VUPEN"],"url":"http://www.vupen.com/english/advisories/2006/4245"},{"name":"22624","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/22624"}]},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-07T19:48:30.572Z"},"title":"CVE Program Container","references":[{"name":"GLSA-200611-12","tags":["vendor-advisory","x_refsource_GENTOO","x_transferred"],"url":"http://security.gentoo.org/glsa/glsa-200611-12.xml"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://docs.info.apple.com/article.html?artnum=305530"},{"name":"22932","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/22932"},{"name":"ADV-2007-1939","tags":["vdb-entry","x_refsource_VUPEN","x_transferred"],"url":"http://www.vupen.com/english/advisories/2007/1939"},{"name":"23344","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/23344"},{"name":"22615","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/22615"},{"name":"OpenPKG-SA-2006.030","tags":["vendor-advisory","x_refsource_OPENPKG","x_transferred"],"url":"http://www.openpkg.org/security/advisories/OpenPKG-SA-2006.030-ruby.html"},{"name":"APPLE-SA-2007-05-24","tags":["vendor-advisory","x_refsource_APPLE","x_transferred"],"url":"http://lists.apple.com/archives/security-announce/2007/May/msg00004.html"},{"name":"oval:org.mitre.oval:def:10185","tags":["vdb-entry","signature","x_refsource_OVAL","x_transferred"],"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10185"},{"name":"22761","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/22761"},{"name":"25402","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/25402"},{"name":"SUSE-SR:2006:026","tags":["vendor-advisory","x_refsource_SUSE","x_transferred"],"url":"http://www.novell.com/linux/security/advisories/2006_26_sr.html"},{"name":"23040","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/23040"},{"name":"[mongrel-users] 20061025 [SEC] Mongrel Temporary Fix For cgi.rb 99% CPU DoS Attack","tags":["mailing-list","x_refsource_MLIST","x_transferred"],"url":"http://rubyforge.org/pipermail/mongrel-users/2006-October/001946.html"},{"name":"20777","tags":["vdb-entry","x_refsource_BID","x_transferred"],"url":"http://www.securityfocus.com/bid/20777"},{"name":"MDKSA-2006:192","tags":["vendor-advisory","x_refsource_MANDRIVA","x_transferred"],"url":"http://www.mandriva.com/security/advisories?name=MDKSA-2006:192"},{"name":"1017194","tags":["vdb-entry","x_refsource_SECTRACK","x_transferred"],"url":"http://securitytracker.com/id?1017194"},{"name":"20061101-01-P","tags":["vendor-advisory","x_refsource_SGI","x_transferred"],"url":"ftp://patches.sgi.com/support/free/security/advisories/20061101-01-P"},{"name":"DSA-1235","tags":["vendor-advisory","x_refsource_DEBIAN","x_transferred"],"url":"http://www.debian.org/security/2006/dsa-1235"},{"name":"USN-371-1","tags":["vendor-advisory","x_refsource_UBUNTU","x_transferred"],"url":"http://www.ubuntu.com/usn/usn-371-1"},{"name":"ADV-2006-4244","tags":["vdb-entry","x_refsource_VUPEN","x_transferred"],"url":"http://www.vupen.com/english/advisories/2006/4244"},{"name":"RHSA-2006:0729","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"http://www.redhat.com/support/errata/RHSA-2006-0729.html"},{"name":"DSA-1234","tags":["vendor-advisory","x_refsource_DEBIAN","x_transferred"],"url":"http://www.debian.org/security/2006/dsa-1234"},{"name":"22929","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/22929"},{"name":"ADV-2006-4245","tags":["vdb-entry","x_refsource_VUPEN","x_transferred"],"url":"http://www.vupen.com/english/advisories/2006/4245"},{"name":"22624","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/22624"}]}]},"cveMetadata":{"assignerOrgId":"53f830b8-0a3f-465b-8143-3b8a9948e749","assignerShortName":"redhat","cveId":"CVE-2006-5467","datePublished":"2006-10-27T18:00:00.000Z","dateReserved":"2006-10-23T00:00:00.000Z","dateUpdated":"2024-08-07T19:48:30.572Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}