CVE-2015-9096
MEDIUMRuby < 2.4.0 - SMTP Command Injection via CRLF Sequences in RCPT TO or MAIL FROM
Title source: llmDescription
Net::SMTP in Ruby before 2.4.0 is vulnerable to SMTP command injection via CRLF sequences in a RCPT TO or MAIL FROM command, as demonstrated by CRLF sequences immediately before and after a DATA substring.
References (6)
Core 6
Core References
Third Party Advisory vendor-advisory
x_refsource_debian
https://www.debian.org/security/2017/dsa-3966
Third Party Advisory x_refsource_misc
https://hackerone.com/reports/137631
Mailing List mailing-list
x_refsource_mlist
https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html
Issue Tracking, Third Party Advisory x_refsource_misc
https://github.com/rubysec/ruby-advisory-db/issues/215
Patch, Third Party Advisory x_refsource_misc
https://github.com/ruby/ruby/commit/0827a7e52ba3d957a634b063bf5a391239b9ffee
Exploit, Third Party Advisory x_refsource_misc
http://www.mbsd.jp/Whitepaper/smtpi.pdf
Scores
CVSS v3
6.1
EPSS
0.0365
EPSS Percentile
88.1%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Details
CWE
CWE-93
Status
published
Products (1)
ruby-lang/ruby
< 2.4.0
Published
Jun 12, 2017
Tracked Since
Feb 18, 2026