JVN Info.

Id
50909  
Name
JVNDB-2008-006219  
Title
Ruby on Rails における SQL インジェクションの脆弱性  
Summary
Ruby on Rails は、ActiveRecord、ActiveSupport、ActiveResource、ActionPack、および ActionMailer に関する処理に不備があるため、SQL インジェクションの脆弱性が存在します。  
Nvdinfo
CVE-2008-4094  
Cvssv2
7.5  
Jvnurl
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-006219.html  
Published Date
2008-09-30  
Registered Date
2012-12-20  
Last Updated Date
2012-12-20  

Actions

Related Nessuslogs

Id Log ID Jvninfo Id Plugin ID CVE CVSS Risk Host Protocol Port Name Synopsis Description Solution See Also Plugin Output Actions
51829 H28_MUN_DWEB_Q4_172_16_240_seg.csv 50909 89737 CVE-2009-3726 9.3 High 172.16.240.115 tcp 443 VMware ESX Third-Party Libraries Multiple Vulnerabilities (VMSA-2010-0004) (remote check) The remote VMware ESX host is missing a security-related patch. The remote VMware ESX host is missing a security-related patch. It is, therefore, affected by multiple vulnerabilities, including remote code execution vulnerabilities, in several third-party components and libraries : - bind - expat - glib2 - Kernel - newt - nfs-utils - NTP - OpenSSH - OpenSSL Apply the appropriate patch according to the vendor advisory that pertains to ESX version 3.5 / 4.0. https://www.vmware.com/security/advisories/VMSA-2010-0004 http://lists.vmware.com/pipermail/security-announce/2010/000104.html Version : ESX 4.0 Installed build : 208167 Fixed build : 236512
51862 H28_MUN_DWEB_Q4_172_16_240_seg.csv 50909 89740 CVE-2009-3726 10 Critical 172.16.240.115 tcp 443 VMware ESX / ESXi Third-Party Libraries and Components (VMSA-2010-0009) (remote check) The remote VMware ESX / ESXi host is missing a security-related patch. The remote VMware ESX / ESXi host is missing a security-related patch. It is, therefore, affected by multiple vulnerabilities, including remote code execution vulnerabilities, in several components and third-party libraries : - libpng - VMnc Codec - vmrun - VMware Remote Console (VMrc) - VMware Tools - vmware-authd Apply the appropriate patch according to the vendor advisory that pertains to ESX version 3.5 / 4.0 or ESXi version 3.5 / 4.0. https://www.vmware.com/security/advisories/VMSA-2010-0009 http://lists.vmware.com/pipermail/security-announce/2010/000099.html Version : ESX 4.0 Installed build : 208167 Fixed build : 256968
57410 H28_DWEB_NW_Scan_Q1_172_16_240_Seg_20160518_hepxqa.csv 50909 89737 CVE-2009-3726 9.3 High 172.16.240.115 tcp 443 VMware ESX Third-Party Libraries Multiple Vulnerabilities (VMSA-2010-0004) (remote check) The remote VMware ESX host is missing a security-related patch. The remote VMware ESX host is missing a security-related patch. It is, therefore, affected by multiple vulnerabilities, including remote code execution vulnerabilities, in several third-party components and libraries : - bind - expat - glib2 - Kernel - newt - nfs-utils - NTP - OpenSSH - OpenSSL Apply the appropriate patch according to the vendor advisory that pertains to ESX version 3.5 / 4.0. https://www.vmware.com/security/advisories/VMSA-2010-0004 http://lists.vmware.com/pipermail/security-announce/2010/000104.html Version : ESX 4.0 Installed build : 208167 Fixed build : 236512
57443 H28_DWEB_NW_Scan_Q1_172_16_240_Seg_20160518_hepxqa.csv 50909 89740 CVE-2009-3726 10 Critical 172.16.240.115 tcp 443 VMware ESX / ESXi Third-Party Libraries and Components (VMSA-2010-0009) (remote check) The remote VMware ESX / ESXi host is missing a security-related patch. The remote VMware ESX / ESXi host is missing a security-related patch. It is, therefore, affected by multiple vulnerabilities, including remote code execution vulnerabilities, in several components and third-party libraries : - libpng - VMnc Codec - vmrun - VMware Remote Console (VMrc) - VMware Tools - vmware-authd Apply the appropriate patch according to the vendor advisory that pertains to ESX version 3.5 / 4.0 or ESXi version 3.5 / 4.0. https://www.vmware.com/security/advisories/VMSA-2010-0009 http://lists.vmware.com/pipermail/security-announce/2010/000099.html Version : ESX 4.0 Installed build : 208167 Fixed build : 256968