Phusion Passenger gem before 3.0.21 and 4.0.x before 4.0.5 for Ruby allows local users to cause a denial of service (prevent application start) or gain privileges by pre-creating a temporary "config" file in a directory with a predictable name in /tmp/ before it is used by the gem.
2014-01-03T18:54:11.350
2025-04-11T00:51:21.963
Deferred
CVSSv2: 4.6 (MEDIUM)
AV:L/AC:L/Au:N/C:P/I:P/A:P
3.9
6.4
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Application | phusion | passenger | ≤ 3.0.20 | Yes |
Application | phusion | passenger | 3.0.0 | Yes |
Application | phusion | passenger | 3.0.1 | Yes |
Application | phusion | passenger | 3.0.2 | Yes |
Application | phusion | passenger | 3.0.3 | Yes |
Application | phusion | passenger | 3.0.4 | Yes |
Application | phusion | passenger | 3.0.5 | Yes |
Application | phusion | passenger | 3.0.6 | Yes |
Application | phusion | passenger | 3.0.7 | Yes |
Application | phusion | passenger | 3.0.8 | Yes |
Application | phusion | passenger | 3.0.9 | Yes |
Application | phusion | passenger | 3.0.10 | Yes |
Application | phusion | passenger | 3.0.11 | Yes |
Application | phusion | passenger | 3.0.12 | Yes |
Application | phusion | passenger | 3.0.13 | Yes |
Application | phusion | passenger | 3.0.14 | Yes |
Application | phusion | passenger | 3.0.15 | Yes |
Application | phusion | passenger | 3.0.17 | Yes |
Application | phusion | passenger | 3.0.18 | Yes |
Application | phusion | passenger | 3.0.19 | Yes |
Application | phusion | passenger | 4.0.1 | Yes |
Application | phusion | passenger | 4.0.2 | Yes |
Application | phusion | passenger | 4.0.3 | Yes |
Application | phusion | passenger | 4.0.4 | Yes |
Application | ruby-lang | ruby | * | No |
Application | redhat | openshift | 1.0 | Yes |