Vulnerability CVE-2013-0277 - CERT Civis.Net

Vulnerability Name:

CVE-2013-0277 (CCN-82012)

Assigned:

2012-12-06

Published:

2013-02-11

Updated:

2019-08-08

Summary:

ActiveRecord in Ruby on Rails before 2.3.17 and 3.x before 3.1.0 allows remote attackers to cause a denial of service or execute arbitrary code via crafted serialized attributes that cause the +serialize+ helper to deserialize arbitrary YAML.

CVSS v3 Severity:

7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
7.4 High (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
5.5 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2013-0277

Source: APPLE
Type: UNKNOWN
APPLE-SA-2013-06-04-1

Source: SUSE
Type: UNKNOWN
openSUSE-SU-2013:0462

Source: CCN
Type: Ruby on Rails Web Site
Ruby on Rails

Source: CCN
Type: SA52112
Ruby on Rails Two Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
52112

Source: SECTRACK
Type: UNKNOWN
1028109

Source: CCN
Type: Apple Web site
About the security content of OS X Mountain Lion v10.8.4 and Security Update 2013-002

Source: CONFIRM
Type: UNKNOWN
http://support.apple.com/kb/HT5784

Source: CONFIRM
Type: UNKNOWN
http://weblog.rubyonrails.org/2013/2/11/SEC-ANN-Rails-3-2-12-3-1-11-and-2-3-17-have-been-released/

Source: DEBIAN
Type: UNKNOWN
DSA-2620

Source: DEBIAN
Type: DSA-2620
rails -- several vulnerabilities

Source: MLIST
Type: Patch
[oss-security] 20130211 Serialized Attributes YAML Vulnerability with Rails 2.3 and 3.0 [CVE-2013-0277]

Source: OSVDB
Type: UNKNOWN
90073

Source: CCN
Type: BID-57898
Ruby on Rails CVE-2013-0277 Remote Code Execution Vulnerability

Source: XF
Type: UNKNOWN
rubyonrails-serialize-code-exec(82012)

Source: MLIST
Type: UNKNOWN
[rubyonrails-security] 20130211 Serialized Attributes YAML Vulnerability with Rails 2.3 and 3.0 [CVE-2013-0277]

Source: CONFIRM
Type: UNKNOWN
https://puppet.com/security/cve/cve-2013-0277

Vulnerable Configuration:

Configuration 1:

cpe:/a:rubyonrails:rails:3.0.0:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.0:beta:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.0:beta2:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.0:beta3:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.0:beta4:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.0:rc:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.0:rc2:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.1:-:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.1:pre:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.2:-:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.2:pre:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.3:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.4:rc1:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.5:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.5:rc1:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.6:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.6:rc1:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.6:rc2:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.7:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.7:rc1:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.7:rc2:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.8:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.8:rc1:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.8:rc2:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.8:rc3:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.8:rc4:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.9:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.9:rc1:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.9:rc2:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.9:rc3:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.9:rc4:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.9:rc5:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.10:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.10:rc1:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.11:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.12:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.12:rc1:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.13:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.13:rc1:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.14:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.16:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.17:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.18:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.19:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.20:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.4:-:*:*:*:*:*:*

Configuration 2:

cpe:/a:rubyonrails:rails:2.3.0:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:2.3.1:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:2.3.2:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:2.3.3:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:2.3.4:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:2.3.9:-:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:2.3.10:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:2.3.11:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:2.3.12:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:2.3.13:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:2.3.14:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:2.3.15:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:2.3.16:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:26225	P	Security update for libsndfile (Important)	2022-01-05
oval:org.opensuse.security:def:55261	P	Security update for qemu (Important)	2021-10-28
oval:org.opensuse.security:def:55944	P	Security update for openexr (Important)	2021-09-02
oval:org.opensuse.security:def:5091	P	Security update for libcares2 (Important)	2021-08-16
oval:org.opensuse.security:def:20130277	V	CVE-2013-0277	2021-08-15
oval:org.opensuse.security:def:5069	P	Security update for openexr (Important)	2021-06-24
oval:org.opensuse.security:def:5751	P	Security update for libnettle (Important)	2021-06-23
oval:org.opensuse.security:def:5060	P	Security update for libjpeg-turbo (Moderate)	2021-06-11
oval:org.opensuse.security:def:5729	P	Security update for libX11 (Important)	2021-06-08
oval:org.opensuse.security:def:5027	P	Security update for gdm (Important)	2021-04-28
oval:org.opensuse.security:def:26214	P	Security update for wavpack (Important)	2021-03-24
oval:org.opensuse.security:def:26213	P	Security update for evolution-data-server (Moderate)	2021-03-19
oval:org.opensuse.security:def:5078	P	Security update for MozillaFirefox (Important)	2021-01-29
oval:org.opensuse.security:def:55778	P	Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP2) (Important)	2020-12-07
oval:org.opensuse.security:def:11259	P	ruby2.1-rubygem-chef-10.32.2-3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4893	P	Security update for graphviz (Low)	2020-12-02
oval:org.opensuse.security:def:4770	P	Security update for qemu (Important)	2020-12-02
oval:org.opensuse.security:def:4846	P	Security update for skopeo (Important)	2020-12-02
oval:org.opensuse.security:def:4800	P	Security update for xen (Important)	2020-12-02
oval:org.opensuse.security:def:4778	P	Security update for libvirt (Important)	2020-12-02
oval:org.opensuse.security:def:5002	P	Security update for nodejs8 (Critical)	2020-12-02
oval:org.opensuse.security:def:4927	P	Security update for mozilla-nss (Moderate)	2020-12-02
oval:org.opensuse.security:def:55121	P	Security update for python3 (Important)	2020-12-02
oval:org.opensuse.security:def:4908	P	Security update for xen (Important)	2020-12-02
oval:org.opensuse.security:def:26289	P	Security update for sane-backends (Important)	2020-12-01
oval:org.opensuse.security:def:56622	P	Security update for binutils (Moderate)	2020-12-01
oval:org.opensuse.security:def:26843	P	xorg-x11 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:56541	P	Security update for shadow (Important)	2020-12-01
oval:org.opensuse.security:def:26790	P	ofed on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55672	P	Security update for flash-player (Important)	2020-12-01
oval:org.opensuse.security:def:27627	P	Security update for IBM Java 7	2020-12-01
oval:org.opensuse.security:def:55098	P	elfutils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:56503	P	Security update for libraw (Moderate)	2020-12-01
oval:org.opensuse.security:def:26639	P	star on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55499	P	Security update for mariadb (Important)	2020-12-01
oval:org.opensuse.security:def:26989	P	man on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:56429	P	Security update for libsoup (Important)	2020-12-01
oval:org.opensuse.security:def:26555	P	glib2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26945	P	libdrm on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:56337	P	Security update for ImageMagick (Important)	2020-12-01
oval:org.opensuse.security:def:26498	P	Security update for nextcloud (Moderate)	2020-12-01
oval:org.opensuse.security:def:26931	P	krb5 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:56229	P	Security update for mariadb (Important)	2020-12-01
oval:org.opensuse.security:def:26417	P	Security update for Mozilla Thunderbird (Moderate)	2020-12-01
oval:org.opensuse.security:def:27662	P	Security update for Ruby On Rails	2020-12-01
oval:org.opensuse.security:def:55099	P	emacs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26892	P	expat on GA media (Moderate)	2020-12-01
oval:org.mitre.oval:def:19688	P	DSA-2620-1 rails - several	2014-06-23
oval:com.ubuntu.precise:def:20130277000	V	CVE-2013-0277 on Ubuntu 12.04 LTS (precise) - medium.	2013-02-12
oval:com.ubuntu.trusty:def:20130277000	V	CVE-2013-0277 on Ubuntu 14.04 LTS (trusty) - medium.	2013-02-12
oval:com.ubuntu.xenial:def:201302770000000	V	CVE-2013-0277 on Ubuntu 16.04 LTS (xenial) - medium.	2013-02-12
oval:com.ubuntu.xenial:def:20130277000	V	CVE-2013-0277 on Ubuntu 16.04 LTS (xenial) - medium.	2013-02-12