Denial of Service Vulnerability in numtok function of raven-ruby gem

Denial of Service Vulnerability in numtok function of raven-ruby gem

CVE-2014-9490 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

The numtok function in lib/raven/okjson.rb in the raven-ruby gem before 0.12.2 for Ruby allows remote attackers to cause a denial of service via a large exponent value in a scientific number.

Learn more about our Web Application Penetration Testing UK.