Vulnerability CVE-2008-3656 - CERT Civis.Net

Vulnerability Name:

CVE-2008-3656 (CCN-44371)

Assigned:

2008-08-08

Published:

2008-08-08

Updated:

2018-10-11

Summary:

Algorithmic complexity vulnerability in the WEBrick::HTTPUtils.split_header_value function in WEBrick::HTTP::DefaultFileHandler in WEBrick in Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted HTTP request that is processed by a backtracking regular expression.

CVSS v3 Severity:

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Low

CVSS v2 Severity:

7.8 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C)
6.4 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C/E:F/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Complete

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
4.1 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P/E:F/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

Vulnerability Type:

Vulnerability Consequences:

Denial of Service

References:

Source: CONFIRM
Type: UNKNOWN
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=494401

Source: MITRE
Type: CNA
CVE-2008-3656

Source: APPLE
Type: UNKNOWN
APPLE-SA-2009-05-12

Source: CCN
Type: RHSA-2008-0897
Moderate: ruby security update

Source: CCN
Type: SA31430
Ruby Multiple Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
31430

Source: SECUNIA
Type: UNKNOWN
31697

Source: SECUNIA
Type: UNKNOWN
32165

Source: SECUNIA
Type: UNKNOWN
32219

Source: SECUNIA
Type: UNKNOWN
32255

Source: SECUNIA
Type: UNKNOWN
32256

Source: SECUNIA
Type: UNKNOWN
32371

Source: SECUNIA
Type: UNKNOWN
33178

Source: CCN
Type: SA35074
Apple Mac OS X Security Update Fixes Multiple Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
35074

Source: GENTOO
Type: UNKNOWN
GLSA-200812-17

Source: CCN
Type: SECTRACK ID: 1020654
Ruby WEBrick HTTP Server split_header_value() Function Regex Bug Lets Remote Users Deny Service

Source: CCN
Type: Apple Web site
About the security content of Security Update 2009-002 / Mac OS X v10.5.7

Source: CONFIRM
Type: UNKNOWN
http://support.apple.com/kb/HT3549

Source: CONFIRM
Type: UNKNOWN
http://support.avaya.com/elmodocs2/security/ASA-2008-424.htm

Source: CCN
Type: ASA-2008-424
ruby security update (RHSA-2008-0897)

Source: CONFIRM
Type: UNKNOWN
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0264

Source: DEBIAN
Type: UNKNOWN
DSA-1651

Source: DEBIAN
Type: UNKNOWN
DSA-1652

Source: DEBIAN
Type: DSA-1651
ruby1.8 -- several vulnerabilities

Source: DEBIAN
Type: DSA-1652
ruby1.9 -- several vulnerabilities

Source: CCN
Type: GLSA-200812-17
Ruby: Multiple vulnerabilities

Source: REDHAT
Type: UNKNOWN
RHSA-2008:0897

Source: CCN
Type: Ruby Core SVN Repository
Ruby Core

Source: CCN
Type: Ruby Programming Language Web site
Multiple vulnerabilities in Ruby

Source: CONFIRM
Type: Exploit
http://www.ruby-lang.org/en/news/2008/08/08/multiple-vulnerabilities-in-ruby/

Source: BUGTRAQ
Type: UNKNOWN
20080831 rPSA-2008-0264-1 ruby

Source: BID
Type: UNKNOWN
30644

Source: CCN
Type: BID-30644
Ruby Multiple Security Bypass and Denial of Service Vulnerabilities

Source: SECTRACK
Type: UNKNOWN
1020654

Source: CCN
Type: USN-651-1
Ruby vulnerabilities

Source: CERT
Type: US Government Resource
TA09-133A

Source: VUPEN
Type: UNKNOWN
ADV-2008-2334

Source: VUPEN
Type: UNKNOWN
ADV-2009-1297

Source: XF
Type: UNKNOWN
ruby-webrick-dos(44371)

Source: XF
Type: UNKNOWN
ruby-webrick-dos(44371)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:9682

Source: UBUNTU
Type: UNKNOWN
USN-651-1

Source: CCN
Type: Rapid7 Vulnerability and Exploit Database [05-30-2018]
Ruby WEBrick::HTTP::DefaultFileHandler DoS

Source: FEDORA
Type: UNKNOWN
FEDORA-2008-8738

Source: FEDORA
Type: UNKNOWN
FEDORA-2008-8736

Source: SUSE
Type: SUSE-SA:2009:037
dhcp-client security problem

Vulnerable Configuration:

Configuration 1:

cpe:/a:ruby-lang:ruby:1.6.8:*:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.0:*:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.1:*:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.1:-9:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.2:*:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.2:preview2:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.2:preview3:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.2:preview4:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.3:*:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.3:preview1:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.3:preview2:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.3:preview3:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.4:*:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.4:preview1:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.4:preview2:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.4:preview3:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:*:*:*:*:*:*:*:* (Version <= 1.8.5)

OR cpe:/a:ruby-lang:ruby:1.8.5:p11:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.5:p113:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.5:p115:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.5:p12:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.5:p2:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.5:p35:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.5:preview1:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.5:preview2:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.5:preview3:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.5:preview4:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.5:preview5:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.6:*:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.6:p110:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.6:p114:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.6:preview1:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.6:preview2:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.6:preview3:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.7:*:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.7:p17:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.7:p22:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.7:p71:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.7:preview1:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.7:preview2:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.7:preview3:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.7:preview4:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.9.0:*:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:4:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/o:redhat:enterprise_linux:4::as:*:*:*:*:*

Configuration RedHat 3:

cpe:/o:redhat:enterprise_linux:4::desktop:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:4::es:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:4::ws:*:*:*:*:*

Configuration RedHat 6:

cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*

Configuration RedHat 7:

cpe:/o:redhat:enterprise_linux:5::client:*:*:*:*:*

Configuration RedHat 8:

cpe:/o:redhat:enterprise_linux:5::client_workstation:*:*:*:*:*

Configuration RedHat 9:

cpe:/o:redhat:enterprise_linux:5::server:*:*:*:*:*

Configuration CCN 1:

cpe:/a:ruby-lang:ruby:1.8.5:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x:10.5:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x_server:10.5:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x:10.5.1:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x_server:10.5.1:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x:10.5.2:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x_server:10.5.2:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x_server:10.5.3:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x:10.5.3:*:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.9:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x:10.5.4:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x_server:10.5.4:*:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.7:p71:*:*:*:*:*:*

OR cpe:/a:ruby-lang:ruby:1.8.6:p286:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x:10.5.5:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x_server:10.5.5:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x:10.5.6:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x_server:10.5.6:*:*:*:*:*:*:*

AND

cpe:/o:gentoo:linux:-:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:3.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:4::as:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:4::desktop:*:*:*:*:*

OR cpe:/o:novell:linux_desktop:9:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:4::es:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:4::ws:*:*:*:*:*

OR cpe:/o:canonical:ubuntu:6.06::lts:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:4.0:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:4.0::x86_64:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:3.0::x86_64:*:*:*:*:*

OR cpe:/o:suse:novell_linux_pos:9:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:5::client_workstation:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:2008.0:x86_64:*:*:*:*:*:*

OR cpe:/o:debian:debian_linux:4.0:*:*:*:*:*:*:*

OR cpe:/o:canonical:ubuntu:7.04:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:5::client:*:*:*:*:*

OR cpe:/o:canonical:ubuntu:7.10:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:2008.0:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:2008.1:x86_64:*:*:*:*:*:*

OR cpe:/a:novell:open_enterprise_server:-:*:*:*:*:*:*:*

OR cpe:/o:opensuse:opensuse:10.3:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:2008.1:*:*:*:*:*:*:*

OR cpe:/o:canonical:ubuntu:8.04::lts:*:*:*:*:*

OR cpe:/o:opensuse:opensuse:11.0:*:*:*:*:*:*:*

OR cpe:/o:novell:suse_linux_enterprise_server:10:sp2:itanium_ia64:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20083656	V	CVE-2008-3656	2022-05-20
oval:org.opensuse.security:def:29431	P	Security update for webkit2gtk3 (Important)	2021-10-06
oval:org.opensuse.security:def:32105	P	Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP3) (Important)	2021-06-04
oval:org.opensuse.security:def:29467	P	Security update for openvswitch (Important)	2021-02-12
oval:org.opensuse.security:def:32239	P	Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP3) (Important)	2021-02-10
oval:org.opensuse.security:def:32020	P	Security update for cyrus-sasl (Important)	2020-12-28
oval:org.opensuse.security:def:32019	P	Security update for clamav (Important)	2020-12-22
oval:org.opensuse.security:def:28010	P	Security update for apache2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:32842	P	cups on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28694	P	Security update for giflib (Moderate)	2020-12-01
oval:org.opensuse.security:def:32389	P	Security update for tomcat6 (Important)	2020-12-01
oval:org.opensuse.security:def:28085	P	Security update for gd (Moderate)	2020-12-01
oval:org.opensuse.security:def:33519	P	Security update for ruby	2020-12-01
oval:org.opensuse.security:def:28749	P	Security update for lzo	2020-12-01
oval:org.opensuse.security:def:32632	P	apache2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28299	P	Security update for netatalk (Important)	2020-12-01
oval:org.opensuse.security:def:32737	P	libvorbis on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28440	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:28009	P	Security update for apache2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:32798	P	tgt on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28645	P	Security update for compat-openssl097g	2020-12-01
oval:org.opensuse.security:def:32332	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:28021	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:33480	P	Security update for libneon	2020-12-01
oval:org.opensuse.security:def:28733	P	Security update for kvm (Important)	2020-12-01
oval:org.opensuse.security:def:32476	P	Security update for yast2-storage (Moderate)	2020-12-01
oval:org.opensuse.security:def:28215	P	Security update for libpng12-0 (Moderate)	2020-12-01
oval:org.opensuse.security:def:28793	P	Security update for libX11 (Moderate)	2020-12-01
oval:org.opensuse.security:def:32688	P	kde4-kgreeter-plugins on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28356	P	Security update for poppler (Moderate)	2020-12-01
oval:org.opensuse.security:def:32031	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:32776	P	python on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28592	P	Security update for openssl-certs	2020-12-01
oval:org.mitre.oval:def:28242	P	RHSA-2008:0897 -- ruby security update (Moderate)	2015-08-17
oval:org.mitre.oval:def:17538	P	USN-651-1 -- ruby1.8 vulnerabilities	2014-06-30
oval:org.mitre.oval:def:18456	P	DSA-1652-1 ruby1.9 - several vulnerabilities	2014-06-23
oval:org.mitre.oval:def:8055	P	DSA-1652 ruby1.9 -- several vulnerabilities	2014-06-23
oval:org.mitre.oval:def:20309	P	DSA-1651-1 ruby1.8 - several vulnerabilities	2014-06-23
oval:org.mitre.oval:def:7935	P	DSA-1651 ruby1.8 -- several vulnerabilities	2014-06-23
oval:org.mitre.oval:def:21785	P	ELSA-2008:0897: ruby security update (Moderate)	2014-05-26
oval:org.mitre.oval:def:9682	V	Algorithmic complexity vulnerability in the WEBrick::HTTPUtils.split_header_value function in WEBrick::HTTP::DefaultFileHandler in WEBrick in Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted HTTP request that is processed by a backtracking regular expression.	2013-04-29
oval:com.redhat.rhsa:def:20080897	P	RHSA-2008:0897: ruby security update (Moderate)	2008-10-21
oval:org.debian:def:1651	V	several vulnerabilities	2008-10-12
oval:org.debian:def:1652	V	several vulnerabilities	2008-10-12