MidnightBSD

Advisories for rtomayko

CVE-2012-2671 HIGH

The Rack::Cache rubygem 0.3.0 through 1.1 caches Set-Cookie and other sensitive headers, which allows attackers to obtain sensitive cookie information, hijack web sessions, or have other unspecified impact by accessing the cache.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
rtomayko rack-cach 1.1
rtomayko rack-cach 0.4
rtomayko rack-cach 1.0.1
rtomayko rack-cach 0.5.2
rtomayko rack-cach 1.0
rtomayko rack-cach 0.5
rtomayko rack-cach 1.0.3
rtomayko rack-cach 0.3.0
rtomayko rack-cach 0.5.3
rtomayko rack-cach 1.0.2