PublicDate: 2005-06-20 04:00:00 UTC
Candidate: CVE-2005-1992
References:
 https://ubuntu.com/security/notices/USN-146-1
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1992
Description:
 The XMLRPC server in utils.rb for the ruby library (libruby) 1.8 sets an
 invalid default value that prevents "security protection" using handlers,
 which allows remote attackers to execute arbitrary commands.
Ubuntu-Description:
Notes:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_ruby1.8: released (1.8.4-1ubuntu1.3)
edgy_ruby1.8: released (1.8.4-5ubuntu1.2)
feisty_ruby1.8: released (1.8.5-4ubuntu2)
devel_ruby1.8: released (1.8.5-4ubuntu2)
dapper_ruby1.9: released (1.9.0+20060423-3ubuntu1)
edgy_ruby1.9: released (1.9.0+20060423-3ubuntu1)
feisty_ruby1.9: released (1.9.0+20060423-3ubuntu1)
devel_ruby1.9: released (1.9.0+20060423-3ubuntu1)
upstream_ruby1.8: needs-triage
upstream_ruby1.9: needs-triage