CVE-2006-1931
Ruby < 1.8.2 - Denial of Service via HTTP/XMLRPC Server Blocking Sockets
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2006-1931. PoCs published by Tanaka Akira.
AI-analyzed exploit summary This exploit demonstrates a denial-of-service vulnerability in Ruby's WEBrick HTTP server by sending a malformed HTTP request that triggers blocking network operations. The issue affects Ruby versions prior to 1.8.3 and can cause the server to become unresponsive.
Description
The HTTP/XMLRPC server in Ruby before 1.8.2 uses blocking sockets, which allows attackers to cause a denial of service (blocked connections) via a large amount of data.
Exploits (1)
This exploit demonstrates a denial-of-service vulnerability in Ruby's WEBrick HTTP server by sending a malformed HTTP request that triggers blocking network operations. The issue affects Ruby versions prior to 1.8.3 and can cause the server to become unresponsive.