Posts Tagged: dos
-
Understanding and Mitigating the Ruby HTTP/XMLRPC Server DoS (CVE-2006-1931)
An in-depth look at CVE-2006-1931, a classic denial-of-service vulnerability in older Ruby HTTP and XMLRPC servers, and how modern practices prevent similar issues.
-
CVE-2006-5467: Ruby CGI Denial of Service
An analysis of CVE-2006-5467, a denial of service vulnerability in the cgi.rb library of Ruby 1.8 involving multipart MIME parsing.
-
CVE-2008-3443: Ruby Regex Memory Allocation Denial of Service
A look into CVE-2008-3443, a denial of service vulnerability in early Ruby versions where the regular expression engine could crash due to memory allocation failures.
-
Understanding CVE-2008-3790: Ruby REXML Denial of Service Vulnerability
An overview of CVE-2008-3790, a denial-of-service vulnerability in early Ruby versions where the REXML parser allowed unbounded XML entity expansion (the Billion Laughs attack).