CVE-2008-3790

Table of Contents

Impact:
Moderate
Public Date:
2008-08-23
Bugzilla:
460134: CVE-2008-3790 ruby: DoS vulnerability in the REXML module

The MITRE CVE dictionary describes this issue as:

The REXML module in Ruby 1.8.6 through 1.8.6-p287, 1.8.7 through 1.8.7-p72, and 1.9 allows context-dependent attackers to cause a denial of service (CPU consumption) via an XML document with recursively nested entities, aka an "XML entity explosion."

Find out more about CVE-2008-3790 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 4 (ruby) RHSA-2008:0897 2008-10-21
Red Hat Enterprise Linux 5 (ruby) RHSA-2008:0897 2008-10-21
Last Modified

CVE description copyright © 2017, The MITRE Corporation