CVE-2015-3900

Severity

50%

Complexity

99%

Confidentiality

48%

RubyGems 2.0.x before 2.0.16, 2.2.x before 2.2.4, and 2.4.x before 2.4.7 does not validate the hostname when fetching gems or making API requests, which allows remote attackers to redirect requests to arbitrary domains via a crafted DNS SRV record, aka a "DNS hijack attack."

RubyGems 2.0.x before 2.0.16, 2.2.x before 2.2.4, and 2.4.x before 2.4.7 does not validate the hostname when fetching gems or making API requests, which allows remote attackers to redirect requests to arbitrary domains via a crafted DNS SRV record, aka a "DNS hijack attack."

CVSS 2.0 Base Score 5. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:P/A:N).

Overview

First reported 9 years ago

2015-06-24 14:59:00

Last updated 5 years ago

2019-04-22 17:48:00

Affected Software

ruby-lang Ruby 1.9

1.9

ruby-lang Ruby 1.9.1

1.9.1

ruby-lang Ruby 1.9.2

1.9.2

ruby-lang Ruby 1.9.3

1.9.3

Ruby-lang Ruby 2.0.0

2.0.0

ruby-lang Ruby 2.1

2.1

ruby-lang Ruby 2.1.1

2.1.1

Ruby-lang Ruby 2.1.2

2.1.2

Ruby-lang Ruby 2.1.3

2.1.3

Ruby-lang Ruby 2.1.4

2.1.4

ruby-lang Ruby 2.1.5

2.1.5

ruby-lang Ruby 2.2.0

2.2.0

RubyGems 2.0.1

2.0.1

RubyGems 2.0.2

2.0.2

RubyGems 2.0.3

2.0.3

RubyGems 2.0.4

2.0.4

RubyGems 2.0.5

2.0.5

RubyGems 2.0.6

2.0.6

RubyGems 2.0.7

2.0.7

RubyGems 2.0.8

2.0.8

RubyGems 2.0.9

2.0.9

RubyGems 2.0.10

2.0.10

RubyGems 2.0.11

2.0.11

RubyGems 2.0.12

2.0.12

RubyGems RubyGems 2.0.13

2.0.13

RubyGems RubyGems 2.0.14

2.0.14

RubyGems RubyGems 2.0.15

2.0.15

RubyGems RubyGems 2.2.0

2.2.0

RubyGems RubyGems 2.2.1

2.2.1

RubyGems RubyGems 2.2.2

2.2.2

RubyGems RubyGems 2.2.3

2.2.3

RubyGems RubyGems 2.4.0

2.4.0

RubyGems RubyGems 2.4.1

2.4.1

RubyGems RubyGems 2.4.2

2.4.2

RubyGems RubyGems 2.4.3

2.4.3

RubyGems RubyGems 2.4.4

2.4.4

RubyGems RubyGems 2.4.5

2.4.5

RubyGems RubyGems 2.4.6

2.4.6

Oracle Solaris 11.3

11.3

Red Hat Enterprise Linux 6.0

6.0

Red Hat Enterprise Linux (RHEL) 7.0 (7)

7.0

References

http://blog.rubygems.org/2015/05/14/CVE-2015-3900.html

Patch, Vendor Advisory

FEDORA-2015-12501

FEDORA-2015-12574

FEDORA-2015-13157

RHSA-2015:1657

Third Party Advisory

[oss-security] 20150626 rubygems <2.4.8 vulnerable to DNS request hijacking (CVE-2015-3900 and CVE-2015-4020)

Third Party Advisory

http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html

Third Party Advisory

75482

https://puppet.com/security/cve/CVE-2015-3900

https://www.trustwave.com/Resources/Security-Advisories/Advisories/TWSL2015-007/?fid=6356

Third Party Advisory

https://www.trustwave.com/Resources/SpiderLabs-Blog/Attacking-Ruby-Gem-Security-with-CVE-2015-3900/

Third Party Advisory

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.