CVE-2010-0541

Priority
Description
Cross-site scripting (XSS) vulnerability in the WEBrick HTTP server in Ruby
in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, allows remote attackers
to inject arbitrary web script or HTML via a crafted URI that triggers a
UTF-7 error page.
Notes
 tyhicks> Fixed upstream in 1.8.7.302
Package
Upstream:released (1.8.7.302-1)
Ubuntu 14.04 LTS (Trusty Tahr):not-affected
Patches:
Upstream:http://svn.ruby-lang.org/cgi-bin/viewvc.cgi?view=revision&revision=29002
Package
Upstream:needs-triage
Ubuntu 14.04 LTS (Trusty Tahr):DNE (pulled 2010-07-27)
Package
Upstream:needs-triage
Ubuntu 14.04 LTS (Trusty Tahr):not-affected
More Information

Updated: 2019-03-19 11:52:27 UTC (commit 15472795df7e9de45b82f2d36b8b419b939f97b2)