CVE-2011-0449
Ruby on Rails 3.0.x < 3.0.4 - Unauthenticated Access Restriction Bypass via Case-Insensitive Action Name
Title source: llmDescription
actionpack/lib/action_view/template/resolver.rb in Ruby on Rails 3.0.x before 3.0.4, when a case-insensitive filesystem is used, does not properly implement filters associated with the list of available templates, which allows remote attackers to bypass intended access restrictions via an action name that uses an unintended case for alphabetic characters.
References (6)
Core 6
Core References
Mailing List mailing-list
x_refsource_mlist
http://groups.google.com/group/rubyonrails-security/msg/04345b2e84df5b4f?dmode=source&output=gplain
Patch x_refsource_confirm
http://weblog.rubyonrails.org/2011/2/8/new-releases-2-3-11-and-3-0-4
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/43278
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1025061
Mailing List, Third Party Advisory vendor-advisory
x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057650.html
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2011/0877
Scores
EPSS
0.0056
EPSS Percentile
68.3%
Details
CWE
CWE-264
Status
published
Products (6)
rubygems/actionpack
3.0.0 - 3.0.4RubyGems
rubyonrails/rails
3.0.0 (7 CPE variants)
rubyonrails/rails
3.0.1 (2 CPE variants)
rubyonrails/rails
3.0.2 (2 CPE variants)
rubyonrails/rails
3.0.3
rubyonrails/rails
3.0.4 rc1
Published
Feb 21, 2011
Tracked Since
Feb 18, 2026