Segmentation Fault Vulnerability in Ox Gem 2.8.0 for Ruby

Segmentation Fault Vulnerability in Ox Gem 2.8.0 for Ruby

CVE-2017-15928 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

In the Ox gem 2.8.0 for Ruby, the process crashes with a segmentation fault when a crafted input is supplied to parse_obj. NOTE: the vendor has stated "Ox should handle the error more gracefully" but has not confirmed a security implication.

Learn more about our Web Application Penetration Testing UK.