CVE-2009-2422
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2009-2422
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2009-2422.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2009-2422
- Aliases
- Published
- 2009-07-10T15:30:00Z
- Modified
- 2024-09-18T01:00:20Z
- Severity
-
- 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
The example code for the digest authentication functionality (httpauthentication.rb) in Ruby on Rails before 2.3.3 defines an authenticateorrequestwithhttpdigest block that returns nil instead of false when the user does not exist, which allows context-dependent attackers to bypass authentication for applications that are derived from this example by sending an invalid username without a password.
- References
-
- http://secunia.com/advisories/35702
- http://www.securityfocus.com/bid/35579
- http://www.vupen.com/english/advisories/2009/1802
- https://exchange.xforce.ibmcloud.com/vulnerabilities/51528
- http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html
- http://n8.tumblr.com/post/117477059/security-hole-found-in-rails-2-3s
- http://weblog.rubyonrails.org/2009/6/3/security-problem-with-authenticate_with_http_digest
- http://support.apple.com/kb/HT4077
- https://security-tracker.debian.org/tracker/CVE-2009-2422
Affected packages
Debian:11 / rails
Package
- Name
- rails
- Purl
- pkg:deb/debian/rails?arch=source
Debian:12 / rails
Package
- Name
- rails
- Purl
- pkg:deb/debian/rails?arch=source
Debian:13 / rails
Package
- Name
- rails
- Purl
- pkg:deb/debian/rails?arch=source